9482a7f2dd4404e05d3450be4b12c9e71efd115b2a073f15b8fe6371aaf83bd7 | Triage

Submit
Reports

Overview

overview

Static

static

9482a7f2dd...d7.exe

windows7-x64

9482a7f2dd...d7.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

9482a7f2dd4404e05d3450be4b12c9e71efd115b2a073f15b8fe6371aaf83bd7.exe

Resource

win7-20220812-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

9482a7f2dd4404e05d3450be4b12c9e71efd115b2a073f15b8fe6371aaf83bd7.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

9482a7f2dd4404e05d3450be4b12c9e71efd115b2a073f15b8fe6371aaf83bd7
Size

119KB
MD5

81290b9708016ceee2c9dea460b29d20
SHA1

c6595a545857bcf5e95af4f3b1b8bb776b4da6d4
SHA256

9482a7f2dd4404e05d3450be4b12c9e71efd115b2a073f15b8fe6371aaf83bd7
SHA512

edd25e3207befc83957e5e40b054373179a66e18fb773a61a1aeb51a8141f5c390ef224227d90fd3dcd49d2f003602210ca88627eed85d0befcc652bd254f287
SSDEEP

3072:JPDRRZaF3HB1Afa+ZqEkbIyWoBSfyc4H:Jrtah1hEY+yl

Score

N/A

Malware Config

Signatures

Files

9482a7f2dd4404e05d3450be4b12c9e71efd115b2a073f15b8fe6371aaf83bd7
.exe windows x86

53335fa96bbf94baa8c480e6b332845e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

lstrcpyA
GetFileAttributesW
GetStdHandle
lstrlenW
VirtualProtect
GetProcessHeap
SetEvent
GetCommandLineA
HeapDestroy
WriteConsoleW
WriteConsoleW
GetPriorityClass
DisconnectNamedPipe
WriteConsoleW
VirtualQueryEx
CreatePipe
ResumeThread
DeleteFileA
GetModuleHandleA
CopyFileA
GetStartupInfoA

mmcndmgr

DllRegisterServer
DllGetClassObject
DllRegisterServer
DllCanUnloadNow

cryptui

WizardFree
LocalEnroll
CryptUIWizBuildCTL
DllUnregisterServer
DllRegisterServer
CryptUIWizDigitalSign
LocalEnrollNoDS
CryptUIWizImport
CryptUIDlgViewContext
WizardFree
CryptUIWizExport
LocalEnroll
CryptUIStartCertMgr

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 280B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 110KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.impdata
Size: 1024B - Virtual size: 769B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy