c2000f78d4c5b9b5e636c689a19589ce1ece0afbba1fa626c71b4c7269c30ab5 | Triage

Submit
Reports

Overview

overview

Static

static

c2000f78d4...b5.exe

windows7-x64

c2000f78d4...b5.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

c2000f78d4c5b9b5e636c689a19589ce1ece0afbba1fa626c71b4c7269c30ab5.exe

Resource

win7-20220812-en

persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

c2000f78d4c5b9b5e636c689a19589ce1ece0afbba1fa626c71b4c7269c30ab5.exe

Resource

win10v2004-20220812-en

persistence spyware stealer upx

windows10-2004-x64

4 signatures

150 seconds

General

Target

c2000f78d4c5b9b5e636c689a19589ce1ece0afbba1fa626c71b4c7269c30ab5
Size

182KB
MD5

443fdaf07e5cf3b4b5ac4bb54b8cdb1f
SHA1

92a7c37245f8eaf533b325c8c240c11114338608
SHA256

c2000f78d4c5b9b5e636c689a19589ce1ece0afbba1fa626c71b4c7269c30ab5
SHA512

c0867517809361b7a8bd61a1951e68848edbae8d700ec16ab7792f5852ff4b76e192f1ab1dedc9c23fbe506ed222e036ebba26079017827d959dde1979b1f910
SSDEEP

3072:br/fHom72gjcF5BBJqAwDLyV4zZ1a/lYzDWZ7bYUqlwS3qgKB3msPHKkEE:HfH/jcFPBkAiyVYZc/l66b0lwS3zKkk3

Score

N/A

Malware Config

Signatures

Files

c2000f78d4c5b9b5e636c689a19589ce1ece0afbba1fa626c71b4c7269c30ab5
.exe windows x86

2e23ca06bd7f83e2241c676632686f59

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeGetTime

kernel32

GetModuleHandleA
TlsSetValue
GetVersionExA
TerminateProcess
ExitProcess
GetCommandLineW
GetModuleFileNameA
TlsGetValue
GetCurrentProcess

user32

RedrawWindow
CreatePopupMenu
ClipCursor
DestroyMenu
TrackPopupMenuEx
FindWindowA
GetDesktopWindow

setupapi

SetupDiDestroyDeviceInfoList
SetupDiGetDeviceRegistryPropertyA
SetupDiEnumDeviceInfo
SetupDiGetClassDevsA

msimg32

AlphaBlend
TransparentBlt

rpcrt4

I_RpcFreeBuffer
UuidCreate

Sections

.text
Size: 110KB - Virtual size: 110KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 384KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy