54f85422f832ef46e70b2a32a34cd02c27a45c0a63874a59ad9b9c4d97258d24 | Triage

Submit
Reports

Overview

overview

8

Static

static

54f85422f8...24.exe

windows7-x64

8

54f85422f8...24.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

54f85422f832ef46e70b2a32a34cd02c27a45c0a63874a59ad9b9c4d97258d24.exe

Resource

win7-20220812-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

54f85422f832ef46e70b2a32a34cd02c27a45c0a63874a59ad9b9c4d97258d24.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

54f85422f832ef46e70b2a32a34cd02c27a45c0a63874a59ad9b9c4d97258d24
Size

804KB
MD5

969c468863618990b56b6b9a2df69df0
SHA1

74e119676b6b72fc0e6fbdc308f1f991b2401c82
SHA256

54f85422f832ef46e70b2a32a34cd02c27a45c0a63874a59ad9b9c4d97258d24
SHA512

a44d73e8d25e88518a73778f13dc37e97af43503e60edecf39b73e0000a458f95c6c9c8915b182cafe3aa24932c029d44a8427d1dd23f4eca97a8afd4f708193
SSDEEP

24576:K1EKSW+rryJgqny4SWfiDrVJ7Q9Q6Q5EFqioQo8J:KeTuJiDv090EFd68J

Score

N/A

Malware Config

Signatures

Files

54f85422f832ef46e70b2a32a34cd02c27a45c0a63874a59ad9b9c4d97258d24
.exe windows x86

93ac4111e83fdc3f0c1beeb57894690f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetCurrentThreadId
GetModuleHandleA
GetDriveTypeW
CreateDirectoryA
DeleteFileW
IsValidLocale
GetProcessVersion
GlobalFlags
GetTickCount
PulseEvent
InterlockedExchange
HeapDestroy
GetModuleFileNameA
GetFileAttributesA
SetFilePointer
VirtualProtectEx
OpenEventW
CreateFileW
LeaveCriticalSection
CreateFileW
SetFileTime
AddAtomA
OpenMutexW
DeleteFileW
GetVolumePathNameA

user32

PeekMessageA
wsprintfA
LoadCursorA
IsMenu
DestroyMenu
GetWindowLongA
GetWindowLongA
MessageBoxA
DestroyIcon
SetFocus
DispatchMessageA
GetWindowTextA
SetRect

dbnetlib

ConnectionError
ConnectionOpen
ConnectionClose
InitSession

advapi32

IsValidAcl

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 794KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy