fac4e33a915af5b58a528f9c0387e10cf41e7fa11523d8d43811798a111f6acb | Triage

Submit
Reports

Overview

overview

Static

static

fac4e33a91...cb.exe

windows7-x64

fac4e33a91...cb.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

fac4e33a915af5b58a528f9c0387e10cf41e7fa11523d8d43811798a111f6acb.exe

Resource

win7-20220812-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

fac4e33a915af5b58a528f9c0387e10cf41e7fa11523d8d43811798a111f6acb.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

fac4e33a915af5b58a528f9c0387e10cf41e7fa11523d8d43811798a111f6acb
Size

126KB
MD5

7539ea60055cbdeeb2efdadbc09a01cf
SHA1

5159b8be3f37284206f0d0f4df4dbc606493e7ac
SHA256

fac4e33a915af5b58a528f9c0387e10cf41e7fa11523d8d43811798a111f6acb
SHA512

9a02ad56b0214e097143954d62c1b0949387a660f891bba5b46b988481139563169f8ad92cd39f15a5864f6265e9e0658565f48c598598cfbc9c83946319bf0a
SSDEEP

3072:6QT4M+X/deKTFRTpz3cx8VEWjYc5egoEUAx0ozPxmTp9:4M+X/deKhlpNVPbePEUAzpa

Score

N/A

Malware Config

Signatures

Files

fac4e33a915af5b58a528f9c0387e10cf41e7fa11523d8d43811798a111f6acb
.exe windows x86

f05aa416feddc58d037d796505da1205

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetPrivateProfileSectionA
RemoveDirectoryW
GetModuleHandleA
IsValidCodePage
CreateDirectoryW
VirtualProtectEx
CreateEventA
GetVersionExA
TlsGetValue
SetLastError
GetCurrentProcess
GetExitCodeThread
GetLocaleInfoW
GlobalLock
GetCurrentThread
GetFileAttributesW
GetStringTypeA
LocalFlags
FindClose
HeapFree
GetFileAttributesW

user32

GetWindowTextW
SetFocus
wsprintfW
IsDialogMessageA
SetCursor
PostMessageW
DispatchMessageA
SetCursorPos
IsWindow
DefDlgProcA
LoadCursorA
PeekMessageW
GetWindowLongW

msdtcprx

DTC_XaOpen
DTC_XaEnd
DTC_XaStart
DTC_XaCommit

uxtheme

CloseThemeData

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 117KB - Virtual size: 117KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.import
Size: 512B - Virtual size: 484B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy