961837e92c3f6931ed5c6cc876233e385e8c01ba38413cf7cd24be9ed6346914 | Triage

Submit
Reports

Overview

overview

8

Static

static

961837e92c...14.exe

windows7-x64

8

961837e92c...14.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

961837e92c3f6931ed5c6cc876233e385e8c01ba38413cf7cd24be9ed6346914.exe

Resource

win7-20220812-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

961837e92c3f6931ed5c6cc876233e385e8c01ba38413cf7cd24be9ed6346914.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

961837e92c3f6931ed5c6cc876233e385e8c01ba38413cf7cd24be9ed6346914
Size

797KB
MD5

2717be19bee672a0818b30188f399c50
SHA1

ac6f41fea38d8e2679fcc93cfcc0ef5f2fc2d90d
SHA256

961837e92c3f6931ed5c6cc876233e385e8c01ba38413cf7cd24be9ed6346914
SHA512

4faa97e8fad0f1c554add30f3eb30244cdb3adb0cd99d770a16c98beff4275a9f055d9d45af0f4909479aa86f4597b90699b5146f440b8f8dfe5134bc443f0e7
SSDEEP

24576:g6WJDEGx2m+t1zRur8afG8kHW0YBp2/+9:6DEz7mr8L6Bl9

Score

N/A

Malware Config

Signatures

Files

961837e92c3f6931ed5c6cc876233e385e8c01ba38413cf7cd24be9ed6346914
.exe windows x86

f73e22d1d9f1e1f1191e8366d5c9f092

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetPrivateProfileSectionA
CloseHandle
GetCurrentProcess
GetVersionExA
FindClose
CreateEventA
GetFileAttributesW
LocalFlags
SetCommBreak
DeviceIoControl
SetLastError
GetPrivateProfileIntA
VirtualProtectEx
CreateDirectoryW
HeapFree
GlobalLock
GetModuleHandleA
GetStringTypeA
GetFileAttributesW
GetCurrentThread
RemoveDirectoryW

user32

DispatchMessageA
GetWindowLongW
IsDialogMessageA
SetFocus
SetCursorPos
GrayStringA
IsWindow
IsZoomed
PostMessageW
wsprintfW
LoadCursorW
PeekMessageW
GetWindowTextW

mswsock

GetAddressByNameA
GetNameByTypeA
getnetbyname
GetServiceA

ntshrui

IsPathSharedA

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 699KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 789KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.import
Size: 512B - Virtual size: 384B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy