0c154b3db271bd62d20c664d04c4c47fab1da28d5661e806bc5b91a165ee0dfc | Triage

Submit
Reports

Overview

overview

Static

static

0c154b3db2...fc.exe

windows7-x64

0c154b3db2...fc.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

0c154b3db271bd62d20c664d04c4c47fab1da28d5661e806bc5b91a165ee0dfc.exe

Resource

win7-20220901-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

0c154b3db271bd62d20c664d04c4c47fab1da28d5661e806bc5b91a165ee0dfc.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

0c154b3db271bd62d20c664d04c4c47fab1da28d5661e806bc5b91a165ee0dfc
Size

121KB
MD5

78ec061ab5a30bf0fc28509cd55a97b0
SHA1

c1566f44d57940f232541296a6551b7010a710f5
SHA256

0c154b3db271bd62d20c664d04c4c47fab1da28d5661e806bc5b91a165ee0dfc
SHA512

943311ace5550c9f7bfdefb386007aaadd9b02054a1531b1b50d17f3b81bb577908c8987fb04d354b2b2eae41f11bc9d7d92d9643c8bc674000e60f89da72e9e
SSDEEP

3072:3+q+9jAr50dU+W2fQ2MHRu9OMlBYRycck:c9s63I2Mxu4EBS

Score

N/A

Malware Config

Signatures

Files

0c154b3db271bd62d20c664d04c4c47fab1da28d5661e806bc5b91a165ee0dfc
.exe windows x86

addd600164e09b4628ab6a8a471f8e87

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

ReleaseMutex
MapViewOfFile
ResetEvent
GetCommandLineA
RemoveDirectoryA
GetStdHandle
CreateMailslotA
HeapSize
SetLastError
DeleteFileA
GetProcessHeap
GetModuleHandleA
GetDriveTypeW
GetFileAttributesA
CreateDirectoryA
VirtualProtect
IsBadWritePtr
GetLocaleInfoA
WriteFile
SetLocalTime
CancelIo

user32

DestroyMenu
GetCapture
DispatchMessageA
PostMessageW
GetWindowTextW
GetCaretPos
SetFocus
LoadCursorA
SetCursor
LoadImageA
PeekMessageA
wsprintfA
GetWindowLongW

filemgmt

DllUnregisterServer
DllRegisterServer
DllRegisterServer
DllGetClassObject

rasapi32

DwRasUninitialize

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 113KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imp
Size: 512B - Virtual size: 456B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy