db94d204e641d1c8f76a3c340121db0b2c43eeb7f28d9a847188cdd1f3224f0a | Triage

Submit
Reports

Overview

overview

8

Static

static

db94d204e6...0a.exe

windows7-x64

8

db94d204e6...0a.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

db94d204e641d1c8f76a3c340121db0b2c43eeb7f28d9a847188cdd1f3224f0a.exe

Resource

win7-20220812-en

spyware stealer upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

db94d204e641d1c8f76a3c340121db0b2c43eeb7f28d9a847188cdd1f3224f0a.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

db94d204e641d1c8f76a3c340121db0b2c43eeb7f28d9a847188cdd1f3224f0a
Size

174KB
MD5

a02fe913f9c2050847b8f1badf4ab576
SHA1

b7f9b65803b2ba5cdbea0cc41310e084d26b59a0
SHA256

db94d204e641d1c8f76a3c340121db0b2c43eeb7f28d9a847188cdd1f3224f0a
SHA512

d567747eb17f25fd99c6308b9b589055337a073dbf2096e086fd7ba60bb02b0b0a87ab3f25295771c7cd2198846bb2ab049c0d52364533345525ea9b273c433f
SSDEEP

3072:YDnO+uBQCrvPXvKge0LfYxPa1xOjIsihlI45hKXBeueg9RPN5IX:QVuKC7PX7LfYixOm158XBexgfPN5IX

Score

N/A

Malware Config

Signatures

Files

db94d204e641d1c8f76a3c340121db0b2c43eeb7f28d9a847188cdd1f3224f0a
.exe windows x86

5ed0afa06e79541c49a13310a5e1c675

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetDeviceCaps
GetTextExtentPointA
DeleteObject
SelectObject
GetTextMetricsA
CreateFontIndirectA

kernel32

InitializeCriticalSection
HeapSize
GetCPInfo
GetOEMCP
GetCPInfoExA
lstrlenW
TlsSetValue
GetStartupInfoA
GetEnvironmentStrings
SetHandleCount
GetStdHandle
GetTickCount
QueryPerformanceCounter
WriteFile
LeaveCriticalSection
InterlockedExchange
EnumResourceNamesW
DeleteCriticalSection
TlsGetValue
FreeEnvironmentStringsW
EnterCriticalSection
FreeEnvironmentStringsA
GetFileType
InterlockedIncrement
RaiseException
UnhandledExceptionFilter
MultiByteToWideChar
RaiseException
GetLastError
GetThreadLocale
GetEnvironmentStringsW
WideCharToMultiByte
GetLocaleInfoA
GetVersionExA
GetACP
GetCurrentProcessId

msimg32

AlphaBlend
TransparentBlt

ole32

CoGetMalloc
StringFromGUID2
CoTaskMemAlloc
CoCreateInstance
CoTaskMemFree
CoTaskMemRealloc

Sections

.text
Size: 104KB - Virtual size: 103KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 252KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy