44172967455b8f053c5d191d0da85854d206bd48fd14dbb06fdd0c0018c1c04c | Triage

Submit
Reports

Overview

overview

8

Static

static

4417296745...4c.exe

windows7-x64

8

4417296745...4c.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

44172967455b8f053c5d191d0da85854d206bd48fd14dbb06fdd0c0018c1c04c.exe

Resource

win7-20220812-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

44172967455b8f053c5d191d0da85854d206bd48fd14dbb06fdd0c0018c1c04c.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

44172967455b8f053c5d191d0da85854d206bd48fd14dbb06fdd0c0018c1c04c
Size

796KB
MD5

80a29122e3d2d3d39c61ce844a8242cc
SHA1

9cd20b5b6b047be923a75e1cd3e2f1345c511545
SHA256

44172967455b8f053c5d191d0da85854d206bd48fd14dbb06fdd0c0018c1c04c
SHA512

1661529ce43bdb3e626fe36a1f1d8f8b5af551ee0d9cb7b21843e1a8fa759e6a067f1bb2fdd4d790bb90c66b62c5b06e3d09d332091efec40ca904319a07dd91
SSDEEP

24576:mD13K6ULhjiEdJg9Sn4yBcSZtOVrVWC1G:G1ALh2EdSg4yBc/R5

Score

N/A

Malware Config

Signatures

Files

44172967455b8f053c5d191d0da85854d206bd48fd14dbb06fdd0c0018c1c04c
.exe windows x86

a9f6da708eba6ee8a8b1f1bae39dda96

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

CreatePipe
GetDriveTypeA
CreateDirectoryA
ResetEvent
WriteFile
GetPriorityClass
GetLocaleInfoA
GlobalSize
HeapSize
GetFileAttributesA
SuspendThread
GetStdHandle
ReadConsoleW
ReleaseMutex
GetModuleHandleA
VirtualProtect
DeleteFileA
SetLocalTime
GetProcessHeap
IsBadReadPtr
GetCommandLineA

user32

GetMessageW
GetCapture
SetCursor
DispatchMessageA
SetFocus
wsprintfA
DestroyMenu
GetWindowTextW
GetCaretPos
PeekMessageA
GetWindowLongW
DrawIcon
LoadCursorA

els

DllRegisterServer
DllGetClassObject
DllRegisterServer
DllGetClassObject

rasapi32

DwRasUninitialize

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 692KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 789KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 444B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy