0d3303fef7336786926b46024228342a4de9fc9349617f573409abdb739bc2c0 | Triage

Submit
Reports

Overview

overview

Static

static

0d3303fef7...c0.exe

windows7-x64

0d3303fef7...c0.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

0d3303fef7336786926b46024228342a4de9fc9349617f573409abdb739bc2c0.exe

Resource

win7-20220812-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

0d3303fef7336786926b46024228342a4de9fc9349617f573409abdb739bc2c0.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

0d3303fef7336786926b46024228342a4de9fc9349617f573409abdb739bc2c0
Size

127KB
MD5

9220a70f43e38552ed0a7ef01800c3b0
SHA1

a025ce6e66ce49427f76aa8525144834b025fb6b
SHA256

0d3303fef7336786926b46024228342a4de9fc9349617f573409abdb739bc2c0
SHA512

2dc2424ef4ffa1b69c5c57b9b46482fbb34fa439bd9d669c96f55f6cc992ab364a67770163d74c4a6564f32c2c944788cc1a1a15e8166ca5aaef4457126c4f69
SSDEEP

1536:ewgVsVbq1zOR/GqLSMAx0pGv8YDhMCL4WCloJ3lQ1pQtccR4Jq:n+yR/RLSMY6CL4WChcR4Jq

Score

N/A

Malware Config

Signatures

Files

0d3303fef7336786926b46024228342a4de9fc9349617f573409abdb739bc2c0
.exe windows x86

dc00bdcd4670949feafb1d204603f682

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetPrivateProfileSectionA
SuspendThread
GlobalSize
GetLocaleInfoA
CreatePipe
ResumeThread
GetPriorityClass
lstrlenA
IsBadReadPtr
GetVersionExA
GetFileAttributesW
SetFilePointer
HeapSize
CreateDirectoryA
GetProcessHeap
GetModuleHandleA
IsValidLocale
VirtualProtect
GetCurrentThreadId
GetModuleFileNameA
GetStdHandle
CreateMutexW
GetPrivateProfileIntA
HeapDestroy
SetEvent

user32

PeekMessageA
SetRect
GetWindowTextW
DrawIcon
LoadCursorA
DispatchMessageA
GetScrollInfo
GetWindowLongA
GetWindowLongA
SetCursor
DestroyMenu
DestroyIcon
wsprintfA

duser

GetGadgetFocus
GetGadgetRect
GetGadget
GetDebug

advapi32

IsValidAcl

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 121KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy