64264bb1caeff1675cf92859469783b8d9dac10378d5ba318a2944cc70c0f48c | Triage

Submit
Reports

Overview

overview

8

Static

static

64264bb1ca...8c.exe

windows7-x64

8

64264bb1ca...8c.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

64264bb1caeff1675cf92859469783b8d9dac10378d5ba318a2944cc70c0f48c.exe

Resource

win7-20220901-en

spyware stealer upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

64264bb1caeff1675cf92859469783b8d9dac10378d5ba318a2944cc70c0f48c.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

64264bb1caeff1675cf92859469783b8d9dac10378d5ba318a2944cc70c0f48c
Size

173KB
MD5

9680b52f11ee8cbcf79dfa26a9a63752
SHA1

91283b48b32445a6f26b3d1bbcdbc6f1f3fbd1cc
SHA256

64264bb1caeff1675cf92859469783b8d9dac10378d5ba318a2944cc70c0f48c
SHA512

368c5b1b32ad195dd7009df6b67ad961e3621928b68acb2c08583bbd0240ef6130ece8ad907dbf88b7bc85ac990223c77197639fbf40f5d0c7c290460af053e5
SSDEEP

3072:xpgJeaipsZzVcU0e1glxbT0tkQzZURrHpo3AbG5kJn7Qg5e2:YA6Z5c3eib0RUrJ8qw2

Score

N/A

Malware Config

Signatures

Files

64264bb1caeff1675cf92859469783b8d9dac10378d5ba318a2944cc70c0f48c
.exe windows x86

8df41e4dc11a805b3cd9ac1c2a4eeced

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SelectObject
DeleteObject
GetTextMetricsA
GetDeviceCaps
GetTextExtentPointA
CreateFontIndirectA

ole32

CoGetMalloc
CoTaskMemFree
StringFromGUID2
CoTaskMemAlloc
CoCreateInstance
CoTaskMemRealloc

kernel32

FreeEnvironmentStringsW
GetThreadLocale
GetCPInfoExA
InterlockedIncrement
QueryPerformanceCounter
LeaveCriticalSection
lstrlenW
GetEnvironmentStrings
WideCharToMultiByte
HeapSize
UnhandledExceptionFilter
TlsGetValue
GetLocaleInfoA
InterlockedExchange
EnumResourceNamesW
InitializeCriticalSection
GetStdHandle
RaiseException
DeleteCriticalSection
GetOEMCP
GetACP
WriteFile
FreeEnvironmentStringsA
GetStartupInfoA
GetVersionExA
GetEnvironmentStringsW
RaiseException
SetHandleCount
TlsSetValue
GetFileType
GetLastError
GetTickCount
GetCPInfo
EnterCriticalSection
MultiByteToWideChar
GetCurrentProcessId

msimg32

AlphaBlend
TransparentBlt

Sections

.text
Size: 102KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 252KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy