647414c7767c22a841b318cc4529aedbf11fdf5e6805998dcee7eb8672ddea6c | Triage

Submit
Reports

Overview

overview

Static

static

647414c776...6c.exe

windows7-x64

647414c776...6c.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

647414c7767c22a841b318cc4529aedbf11fdf5e6805998dcee7eb8672ddea6c.exe

Resource

win7-20220812-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

647414c7767c22a841b318cc4529aedbf11fdf5e6805998dcee7eb8672ddea6c.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

647414c7767c22a841b318cc4529aedbf11fdf5e6805998dcee7eb8672ddea6c
Size

124KB
MD5

4d1e6bd34512b998d60e35fa61274370
SHA1

e36f050b8ab20af3d11629390a31a449c0ed93cb
SHA256

647414c7767c22a841b318cc4529aedbf11fdf5e6805998dcee7eb8672ddea6c
SHA512

ca680cde60929944345d4bf17b9ea462ad1d549678ca9a902196e5d89431a18afe345cd83cd793e8a0ed42a690b249703618b7a191598410440186ee216594e5
SSDEEP

1536:pL6rr3eS1dNH8hw9ppZcFsp/fwi0fwDnqWQboDScrmBSfVl7FFSV/I7tT9ukpG5j:pE1pfB1p/qIDnqPoDScD1wu7tXw5+5

Score

N/A

Malware Config

Signatures

Files

647414c7767c22a841b318cc4529aedbf11fdf5e6805998dcee7eb8672ddea6c
.exe windows x86

cf42ea72ac0a774c3d2d813b281f1b7c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetLocaleInfoA
ResumeThread
CreatePipe
CreateDirectoryA
HeapSize
GetPrivateProfileSectionA
SetEvent
GetPriorityClass
SetFilePointer
GetModuleFileNameA
GetStdHandle
HeapDestroy
GetCurrentThreadId
GetFileAttributesW
lstrlenA
GlobalSize
GetProcessHeap
GetPrivateProfileIntA
GetVersionExA
IsBadReadPtr
VirtualProtect
SuspendThread
GetModuleHandleA
IsValidLocale
CreateMutexW

user32

DestroyMenu
DestroyIcon
DrawIcon
GetWindowLongA
wsprintfA
SetCursor
LoadCursorA
PeekMessageA
SetRect
GetScrollInfo
GetWindowTextW
GetWindowLongA
DispatchMessageA

duser

GetGadgetRect
GetGadget
GetGadgetFocus
GetDebug

advapi32

IsValidAcl

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 117KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy