37a40ea90d1bab551c76a62b9220627fce094895073306e768df41a5eeaa037a | Triage

Submit
Reports

Overview

overview

Static

static

37a40ea90d...7a.exe

windows7-x64

37a40ea90d...7a.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

37a40ea90d1bab551c76a62b9220627fce094895073306e768df41a5eeaa037a.exe

Resource

win7-20220812-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

37a40ea90d1bab551c76a62b9220627fce094895073306e768df41a5eeaa037a.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

37a40ea90d1bab551c76a62b9220627fce094895073306e768df41a5eeaa037a
Size

115KB
MD5

924ac4ede761ee3fed1366288462ba50
SHA1

711cadac6432ede124e2e3bf2a72f8dd2b86ea52
SHA256

37a40ea90d1bab551c76a62b9220627fce094895073306e768df41a5eeaa037a
SHA512

99cba6c3a5ae7f7443acf29ff0ac8261295e109f01e16b2fddff57a171e33ab941a65dde475752287f11e5a7ca8718e55cefbfb21f0017e3febd6018cd32dd42
SSDEEP

3072:xj8jWa9VHGxXg0Ju5txyHfvY26N9smR1zF5J3Zm:4TmK0JuYHfAN9X1zFn3o

Score

N/A

Malware Config

Signatures

Files

37a40ea90d1bab551c76a62b9220627fce094895073306e768df41a5eeaa037a
.exe windows x86

d272b37ab3af2c410795b79ae3fe5278

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

SearchPathW
lstrlenA
GetPrivateProfileSectionA
DeleteFileW
CloseHandle
HeapSize
Sleep
PulseEvent
ReleaseMutex
GetStartupInfoA
FindAtomW
GetLastError
ReadConsoleA
GetDriveTypeA
VirtualProtectEx
ReadConsoleA
ReadConsoleA
LoadLibraryW
GetLogicalDrives
GetStringTypeW
TlsGetValue

dsprop

MsgBox
MsgBox
ErrMsg
FindSheet
ErrMsg
ReportError
CheckADsError
CheckADsError
FindSheet
ErrMsg
MsgBox
ReportError
FindSheet

gpedit

ExportRSoPData
DllGetClassObject
DllCanUnloadNow
BrowseForGPO

Sections

.text
Size: 1024B - Virtual size: 788B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 704B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 266B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 111KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.import
Size: 512B - Virtual size: 136B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.orpc
Size: 512B - Virtual size: 73B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy