045a26d47c273d595d0259309627eecaa6063d04e09a18c5f9ca2b78ccc31c27 | Triage

Submit
Reports

Overview

overview

Static

static

045a26d47c...27.exe

windows7-x64

045a26d47c...27.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

045a26d47c273d595d0259309627eecaa6063d04e09a18c5f9ca2b78ccc31c27.exe

Resource

win7-20220901-en

discovery evasion persistence spyware stealer upx

windows7-x64

20 signatures

150 seconds

Behavioral task

behavioral2

Sample

045a26d47c273d595d0259309627eecaa6063d04e09a18c5f9ca2b78ccc31c27.exe

Resource

win10v2004-20220901-en

discovery evasion persistence spyware stealer upx

windows10-2004-x64

21 signatures

150 seconds

General

Target

045a26d47c273d595d0259309627eecaa6063d04e09a18c5f9ca2b78ccc31c27
Size

279KB
MD5

80a23f28c88b9d3b631baf17149f9545
SHA1

a09d826ea0c811d7853a296313f7ad2e108abccf
SHA256

045a26d47c273d595d0259309627eecaa6063d04e09a18c5f9ca2b78ccc31c27
SHA512

3834d4d3e5da73d2201b193975cbd2639888792606da569483a5dce88731cfd657b554e7d62d03d25bad2dbf154259615fa780077cfc531769b76c6567cf0f2d
SSDEEP

6144:UddVfONIjw60OYve+UaoIZbGKGNhPHFbr60NrhIeSUwOR:KVfOKjwhvBzZbGKGfvFC0w4

Score

N/A

Malware Config

Signatures

Files

045a26d47c273d595d0259309627eecaa6063d04e09a18c5f9ca2b78ccc31c27
.exe windows x86

24ba9808878d7e34dafddb850ef00fd0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winspool.drv

ClosePrinter
OpenPrinterW
DocumentPropertiesW

ole32

CoCreateInstance
CLSIDFromString
CoTaskMemFree
StgCreateDocfile

setupapi

CM_Get_Depth
SetupDiGetDeviceRegistryPropertyW
CMP_WaitNoPendingInstallEvents
CM_Get_DevNode_Status

comdlg32

ChooseFontA
GetOpenFileNameA

kernel32

GlobalAddAtomA
InterlockedExchange
Sleep
ExitProcess
InterlockedCompareExchange
QueryPerformanceCounter
FreeLibrary
SetUnhandledExceptionFilter
GetStartupInfoA
LoadLibraryExW
EnumResourceNamesW
GetLongPathNameA
FindClose
RtlUnwind
GetCurrentThreadId
GetTickCount
GetProcAddress

Sections

.text
Size: 150KB - Virtual size: 281KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 126KB - Virtual size: 126KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy