090390c056a8ede941bd4f6bf3a3d3f631688fd34b9b14cb9941cd1525030eb8 | Triage

Submit
Reports

Overview

overview

8

Static

static

090390c056...b8.exe

windows7-x64

8

090390c056...b8.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

090390c056a8ede941bd4f6bf3a3d3f631688fd34b9b14cb9941cd1525030eb8.exe

Resource

win7-20220812-en

spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

090390c056a8ede941bd4f6bf3a3d3f631688fd34b9b14cb9941cd1525030eb8.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

090390c056a8ede941bd4f6bf3a3d3f631688fd34b9b14cb9941cd1525030eb8
Size

533KB
MD5

60bf216bd89b6faeb8f52aa8b73b4e08
SHA1

85795a51b062861f11e059a97aaf5fa46e9e68d3
SHA256

090390c056a8ede941bd4f6bf3a3d3f631688fd34b9b14cb9941cd1525030eb8
SHA512

d550e091b7853d9557c18750d5e10342efc2c731db7d56a71421d29934f8c205490bfdc624b8a9bb45072be0618a1077d7ed1614b73f9c6fb74decd9e8ae7c80
SSDEEP

12288:gXsVa0LWyNkUK8drvf+5pnFYGq6O881MS+Nkz1hH3F1T:WmW7oNO5pFYyO88KRO1J

Score

N/A

Malware Config

Signatures

Files

090390c056a8ede941bd4f6bf3a3d3f631688fd34b9b14cb9941cd1525030eb8
.exe windows x86

4582ffdd7eb98cb63a937096204182b7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapAlloc
GetProcessHeap
HeapFree
GetTickCount
GetModuleFileNameW
GetCurrentProcessId
OpenFileMappingW
GetLastError
MapViewOfFile
CloseHandle
CreateFileW
CreateFileMappingW
UnmapViewOfFile
GetFileInformationByHandle
VirtualAlloc
VirtualFree
GetModuleHandleA
GetProcAddress
LoadLibraryW

Sections

.text
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xcpad
Size: - Virtual size: 352KB

.idata
Size: 1024B - Virtual size: 626B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 420B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 760B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy