381c7e8aecc87f9399da0bd35667a6b21f0d4505d5d0dae37eff6898ad3e01d1 | Triage

Submit
Reports

Overview

overview

Static

static

381c7e8aec...d1.exe

windows7-x64

381c7e8aec...d1.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

381c7e8aecc87f9399da0bd35667a6b21f0d4505d5d0dae37eff6898ad3e01d1.exe

Resource

win7-20220901-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

381c7e8aecc87f9399da0bd35667a6b21f0d4505d5d0dae37eff6898ad3e01d1.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

381c7e8aecc87f9399da0bd35667a6b21f0d4505d5d0dae37eff6898ad3e01d1
Size

131KB
MD5

82dce508dbaf4b60323dbd1f7e1d3690
SHA1

78ab7d43464bcceb194ca184608807f93a04cdff
SHA256

381c7e8aecc87f9399da0bd35667a6b21f0d4505d5d0dae37eff6898ad3e01d1
SHA512

8c29ba0e7b31a61d3982c53b60a26aa9b24b7b5172f05330fd878cea81fb5d68de9c90904c4d97e47031930000a0f222c5ceb6340b6a9867ca83d298d68abfdc
SSDEEP

3072:UsQmWO44tiXdt74pC/aL1ipJKeZEntSS9+y7KM8Eaft:CjO4VXdtEpX1iXQn4iwEe

Score

N/A

Malware Config

Signatures

Files

381c7e8aecc87f9399da0bd35667a6b21f0d4505d5d0dae37eff6898ad3e01d1
.exe windows x86

48ec347fff2a2d54e135d1c693f59a26

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetVersionExA
CloseHandle
FindClose
GetStringTypeA
GetPrivateProfileIntA
SetCommBreak
GlobalLock
VirtualProtectEx
GetModuleHandleA
DeviceIoControl
GetPrivateProfileSectionA
GetFileAttributesW
GetFileAttributesW
CreateEventA
SetLastError
GetCurrentProcess
LocalFlags
HeapFree
RemoveDirectoryW
CreateDirectoryW
GetCurrentThread

user32

GetWindowTextW
PeekMessageW
PostMessageW
SetCursorPos
CloseDesktop
IsZoomed
DispatchMessageA
SetFocus
IsDialogMessageA
LoadCursorW
wsprintfW
GetWindowLongW
IsWindow

mswsock

GetNameByTypeA
getnetbyname
GetServiceA
GetAddressByNameA

ntshrui

IsPathSharedA

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 124KB - Virtual size: 123KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.import
Size: 512B - Virtual size: 384B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy