57810a3a6f96a8f5346ac4f36e940d268ae733dc7bf7bd44af07914bcf3c4d78 | Triage

Submit
Reports

Overview

overview

Static

static

57810a3a6f...78.exe

windows7-x64

57810a3a6f...78.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

57810a3a6f96a8f5346ac4f36e940d268ae733dc7bf7bd44af07914bcf3c4d78.exe

Resource

win7-20220901-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

57810a3a6f96a8f5346ac4f36e940d268ae733dc7bf7bd44af07914bcf3c4d78.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

57810a3a6f96a8f5346ac4f36e940d268ae733dc7bf7bd44af07914bcf3c4d78
Size

119KB
MD5

96d75d2d98671e93d370f25de58c5bc0
SHA1

db171828d344d85caa96c2ed24c0b75f0428dffa
SHA256

57810a3a6f96a8f5346ac4f36e940d268ae733dc7bf7bd44af07914bcf3c4d78
SHA512

6fc08d4a7920bad37ef0d44c42637975daa010084606a29108022e111720e5dd59146d142df0a3a92a96ed2636b4b188781097def8be1fb6349c930151dca4fa
SSDEEP

1536:sJovCF9MYNhS1PiObpWNhfycNhk2wtY4j6zg5DedL0SKPRNUGHg2xx3wKkcHcNAo:0RS1PuK4hk2wtjtNzgY3wjcHWAwcr

Score

N/A

Malware Config

Signatures

Files

57810a3a6f96a8f5346ac4f36e940d268ae733dc7bf7bd44af07914bcf3c4d78
.exe windows x86

d40f1498b24f1bf175cf268994c8e687

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

CopyFileA
GetStartupInfoA
lstrcpyA
WriteConsoleW
VirtualProtect
GetFileAttributesW
CreatePipe
SetEvent
DisconnectNamedPipe
DeleteFileA
WriteConsoleW
WriteConsoleW
HeapDestroy
VirtualQueryEx
lstrlenW
GetProcessHeap
GetModuleHandleA
GetCommandLineA
GetPriorityClass
GetStdHandle
ResumeThread

mmcndmgr

DllRegisterServer
DllRegisterServer
DllGetClassObject
DllCanUnloadNow

cryptui

CryptUIWizImport
LocalEnrollNoDS
DllUnregisterServer
CryptUIWizExport
CryptUIDlgViewContext
WizardFree
CryptUIStartCertMgr
WizardFree
DllRegisterServer
CryptUIWizDigitalSign
LocalEnroll
CryptUIWizBuildCTL
LocalEnroll

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 280B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 110KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.impdata
Size: 1024B - Virtual size: 769B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy