574041eeb683dbef0267ee6706d6452816cad8ec8c6370d2b78adc8b4f75fffd | Triage

Submit
Reports

Overview

overview

8

Static

static

574041eeb6...fd.exe

windows7-x64

8

574041eeb6...fd.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

574041eeb683dbef0267ee6706d6452816cad8ec8c6370d2b78adc8b4f75fffd.exe

Resource

win7-20220901-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

574041eeb683dbef0267ee6706d6452816cad8ec8c6370d2b78adc8b4f75fffd.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

574041eeb683dbef0267ee6706d6452816cad8ec8c6370d2b78adc8b4f75fffd
Size

797KB
MD5

a1814ade3edae2294aa4e1ff8e6bbc40
SHA1

4747fea9f40d37b51f1e88c9b57218f1d8ad1020
SHA256

574041eeb683dbef0267ee6706d6452816cad8ec8c6370d2b78adc8b4f75fffd
SHA512

c7d51203d6a02de952a141d83ca1a2a67f5390e3e261e1469dae320095233facc351cfde67dc92359a60058d98acd058978ddfd3b758464069466f9201d2a78a
SSDEEP

24576:a7T3PlwvCCC9W0oVuRXEazcUzgzvEOCxN:IDqvCCwW+1lAUsbEOCx

Score

N/A

Malware Config

Signatures

Files

574041eeb683dbef0267ee6706d6452816cad8ec8c6370d2b78adc8b4f75fffd
.exe windows x86

6005c70a9d571cbd6eef882a40c5c18a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

MapViewOfFile
CancelIo
GetFileAttributesA
SetLastError
CreateDirectoryA
CreateMailslotA
GetLocaleInfoA
DeleteFileA
SetLocalTime
VirtualProtect
GetProcessHeap
GetModuleHandleA
GetDriveTypeW
RemoveDirectoryA
GetCommandLineA
GetStdHandle
IsBadWritePtr
ResetEvent
WriteFile
HeapSize
ReleaseMutex

user32

GetCapture
SetFocus
DispatchMessageA
LoadImageA
SetCursor
wsprintfA
GetCaretPos
PostMessageW
GetWindowTextW
LoadCursorA
PeekMessageA
DestroyMenu
GetWindowLongW

filemgmt

DllGetClassObject
DllRegisterServer
DllRegisterServer
DllUnregisterServer

rasapi32

DwRasUninitialize

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 692KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 790KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.import
Size: 512B - Virtual size: 460B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy