7ddaa58638dd5572c8197b77db1773917d2d2309a4b6b56bc02b0eecfdf4342d | Triage

Submit
Reports

Overview

overview

8

Static

static

7ddaa58638...2d.exe

windows7-x64

8

7ddaa58638...2d.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

7ddaa58638dd5572c8197b77db1773917d2d2309a4b6b56bc02b0eecfdf4342d.exe

Resource

win7-20220812-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

7ddaa58638dd5572c8197b77db1773917d2d2309a4b6b56bc02b0eecfdf4342d.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

7ddaa58638dd5572c8197b77db1773917d2d2309a4b6b56bc02b0eecfdf4342d
Size

809KB
MD5

9239d2c42d3e06fdaef8f59f450c0fe0
SHA1

378504df3b750e414daa21872d113a3a30bb5426
SHA256

7ddaa58638dd5572c8197b77db1773917d2d2309a4b6b56bc02b0eecfdf4342d
SHA512

aa26b967d73515336e8da93e1ef55d2f8785061032a5c1d817b260129764df0f37ea7d7d037e3f3133f480de7c61d0a8c35566fe4a79d7f87277b2929cd6e44a
SSDEEP

24576:hIvZlO/SJ+QxSykC5vTLkNXcBr6VYKriuN:hulOqjpfRkNXFpmuN

Score

N/A

Malware Config

Signatures

Files

7ddaa58638dd5572c8197b77db1773917d2d2309a4b6b56bc02b0eecfdf4342d
.exe windows x86

759aac9803b7382719c6af479a3fbcd7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetCommandLineA
WriteConsoleA
HeapDestroy
GetLogicalDrives
VirtualProtect
lstrcpyA
GetDriveTypeW
GetPrivateProfileSectionW
lstrlenW
GetStartupInfoA
HeapSize
WriteConsoleA
SetEvent
CopyFileA
LoadLibraryW
FindVolumeClose
WriteConsoleA
DeleteAtom
GetFileAttributesA
AddAtomA
Sleep

mmcndmgr

CreateExecutivePlatform
DllGetClassObject
DllRegisterServer
DllCanUnloadNow

dsprop

FindSheet
CheckADsError
ErrMsg
MsgBox
ErrMsg
MsgBox
FindSheet
FindSheet
MsgBox
ReportError
CheckADsError
ReportError
ErrMsg

Sections

.text
Size: 1024B - Virtual size: 780B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 12KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 1.4MB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 802KB - Virtual size: 801KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 67B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 512B - Virtual size: 160B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy