5c5e6c15ccb461de09d8e90eb8b4017c769f0eb12dd5e2d95059efe6f7d6c3d8 | Triage

Submit
Reports

Overview

overview

8

Static

static

5c5e6c15cc...d8.exe

windows7-x64

8

5c5e6c15cc...d8.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

5c5e6c15ccb461de09d8e90eb8b4017c769f0eb12dd5e2d95059efe6f7d6c3d8.exe

Resource

win7-20220812-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

5c5e6c15ccb461de09d8e90eb8b4017c769f0eb12dd5e2d95059efe6f7d6c3d8.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

5c5e6c15ccb461de09d8e90eb8b4017c769f0eb12dd5e2d95059efe6f7d6c3d8
Size

811KB
MD5

09d609b3a102d59632c9e1e1ad382f98
SHA1

3e6935ec3e5f42b99e4b5a2a91b0ac967bbcbcd5
SHA256

5c5e6c15ccb461de09d8e90eb8b4017c769f0eb12dd5e2d95059efe6f7d6c3d8
SHA512

72069d3e68b002ac2220df709a7fc08afc70c8029faea9148dd97a216f5b9bbebfe594d1c1f1c6309b6aad9128f000ca39bea23481c501c87e8872675b76f998
SSDEEP

24576:nlkvN3b7ZlqpIzmCCEdZSxyhiVpuNQWBpEJ:EZb7ZMSrvWYwVcNN

Score

N/A

Malware Config

Signatures

Files

5c5e6c15ccb461de09d8e90eb8b4017c769f0eb12dd5e2d95059efe6f7d6c3d8
.exe windows x86

6d5bb797f8720b75118e104f5e1c9ea1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadConsoleW
CreateFileA
CreateDirectoryW
OpenMutexA
GlobalFree
LoadLibraryA
OpenSemaphoreA
DeleteFileA
SetEvent
GetModuleFileNameA
VirtualProtect
EnterCriticalSection
GetTickCount
RemoveDirectoryA
WriteConsoleA
GetFileSize
GetEnvironmentStringsW
Sleep
CreateDirectoryA
SetLastError
lstrlenA
CloseHandle
SetLastError
GetCommandLineA
GetStartupInfoA

user32

GetClassInfoA
IsWindow
DrawTextW
SetFocus
DispatchMessageA
DestroyMenu
FindWindowA
PeekMessageA
CallWindowProcW
GetWindowLongA
IsZoomed
GetSysColor
DispatchMessageA

cfgbkend

DllUnregisterServer
DllCanUnloadNow
DllGetClassObject
DllRegisterServer

advapi32

RegCloseKey

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 800KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy