3d58b7cb7d15f66e71c8e881380935eac08812afe53f3c4443c4176d49634044 | Triage

Submit
Reports

Overview

overview

8

Static

static

3d58b7cb7d...44.exe

windows7-x64

8

3d58b7cb7d...44.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

3d58b7cb7d15f66e71c8e881380935eac08812afe53f3c4443c4176d49634044.exe

Resource

win7-20220901-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

3d58b7cb7d15f66e71c8e881380935eac08812afe53f3c4443c4176d49634044.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

3d58b7cb7d15f66e71c8e881380935eac08812afe53f3c4443c4176d49634044
Size

810KB
MD5

6e61f0acb9fb031fdde5de2a720a8900
SHA1

632895affe1dbcab14684c0a43f727e295c3cd29
SHA256

3d58b7cb7d15f66e71c8e881380935eac08812afe53f3c4443c4176d49634044
SHA512

30bdc15c1fbe7b1334382b7fba633ae6662e76b6a157e0f168043e16b96181af417db0ed4cda4438f4320b7d1041d9c4c862c1d80241634b7b58eee78708f3fd
SSDEEP

12288:kKZQ9FuJYSYtDjIatLtvVTKu2vvJ98CjAlEz73/0Nkk+wrqg:7Z0jIatLtv9KT90GzT/wkkgg

Score

N/A

Malware Config

Signatures

Files

3d58b7cb7d15f66e71c8e881380935eac08812afe53f3c4443c4176d49634044
.exe windows x86

0d098c87c73b142180d38613c2aa43f3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCalendarInfoA
EnterCriticalSection
VirtualProtectEx
ReadFile
GetCommandLineW
RemoveDirectoryA
GetModuleFileNameA
CreateDirectoryW
GetFileSize
CreateFileA
lstrlenW
TlsGetValue
GetStartupInfoA
Sleep
LeaveCriticalSection
DeleteFileA
WriteConsoleW
GlobalFree
InitializeCriticalSection
GetModuleHandleA
CancelIo
CloseHandle
GetTickCount
CancelIo
GetConsoleTitleW

user32

MessageBoxA
GetWindowLongA
GetSysColor
GetClassInfoA
DestroyMenu
PeekMessageA
wsprintfA
CreateIcon
IsWindowVisible
IsWindowEnabled
GetWindowLongA
IsWindow
DispatchMessageA

cryptdlg

CertTrustInit
CertTrustCertPolicy
CertTrustCleanup
CertConfigureTrustA

advapi32

RegCloseKey

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 800KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy