9f98aebc5660b59ac5f9760701d9138356de3886a2d2f8513edaac90bb14ae22 | Triage

Submit
Reports

Overview

overview

Static

static

9f98aebc56...22.exe

windows7-x64

9f98aebc56...22.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

9f98aebc5660b59ac5f9760701d9138356de3886a2d2f8513edaac90bb14ae22.exe

Resource

win7-20220901-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

9f98aebc5660b59ac5f9760701d9138356de3886a2d2f8513edaac90bb14ae22.exe

Resource

win10v2004-20220812-en

pony collection discovery rat spyware stealer

windows10-2004-x64

8 signatures

150 seconds

General

Target

9f98aebc5660b59ac5f9760701d9138356de3886a2d2f8513edaac90bb14ae22
Size

116KB
MD5

8342d18cc259d5797ab1a29a88b19b79
SHA1

59f2a65809f49fa071c4324a6092de0edc514c0c
SHA256

9f98aebc5660b59ac5f9760701d9138356de3886a2d2f8513edaac90bb14ae22
SHA512

a10854995c5e79b6cb1cc6730a8b1ec298ab7487aa4b259bad8c405251eb84302368b1f3d252504d73c366c6af25fb45ebd667018c8713520d58c6154803f9e9
SSDEEP

1536:vORsKybsiXvFor4eq+lUPDZwPflVBz9vFtLuu8K7FZLgfI7ZZCTJJV1P:vOzialU63lVBz9NJuLK7FZtLgD

Score

N/A

Malware Config

Signatures

Files

9f98aebc5660b59ac5f9760701d9138356de3886a2d2f8513edaac90bb14ae22
.exe windows x86

61436f15c99bc9386e1086034a1a0edf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateMailslotW
WriteConsoleW
DeleteFileA
CreateFileMappingW
LoadLibraryA
GetStringTypeW
GetModuleHandleW
GetACP
HeapCreate
SetCurrentDirectoryA
GetShortPathNameW
GetVersion
Heap32Next
GetConsoleAliasW
GetConsoleTitleA
SetFilePointer
DeleteFileA
HeapFree
DeleteFileA
SetEnvironmentVariableA
GetStringTypeW
GetExitCodeProcess
GetProcessHeap

mstscax

DllCanUnloadNow
DllGetTscCtlVer
DllUnregisterServer
DllRegisterServer

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 109KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 1024B - Virtual size: 544B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy