bb041d48553b7d7ce249fca88f29fcd7134d846b4f6e179a4100414036e11fb7 | Triage

Submit
Reports

Overview

overview

8

Static

static

bb041d4855...b7.exe

windows7-x64

8

bb041d4855...b7.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

bb041d48553b7d7ce249fca88f29fcd7134d846b4f6e179a4100414036e11fb7.exe

Resource

win7-20220812-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

bb041d48553b7d7ce249fca88f29fcd7134d846b4f6e179a4100414036e11fb7.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

bb041d48553b7d7ce249fca88f29fcd7134d846b4f6e179a4100414036e11fb7
Size

807KB
MD5

90142db89e9a86b1c433f3b42dad4be0
SHA1

55bc5a1b4095cfde21658bd1ea48af634406c556
SHA256

bb041d48553b7d7ce249fca88f29fcd7134d846b4f6e179a4100414036e11fb7
SHA512

d165243843e4054100c9dd3ebbc0d0fd2ed0584a10d457ff725b0a470cc225a560ab6adeb40b7317376e0919e609a1352b64faa14c56a08c86128ff28e26645d
SSDEEP

24576:oiHCaTcyBOOv8CSRgycUbUm+oEMDE7ZJBq:oiHmyJTyjUmDU5q

Score

N/A

Malware Config

Signatures

Files

bb041d48553b7d7ce249fca88f29fcd7134d846b4f6e179a4100414036e11fb7
.exe windows x86

a84127183d194a894d368ed54e1638c7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetDriveTypeW
Sleep
CancelIo
CopyFileA
GetFileAttributesA
lstrlenW
WriteConsoleW
WriteConsoleW
HeapSize
AddAtomW
LoadLibraryW
GetStartupInfoA
WriteConsoleW
VirtualProtect
lstrcpyA
GetProcessHeap
HeapDestroy
DeleteFileA
SetEvent
GetCommandLineA
GetPrivateProfileSectionW

mmcndmgr

DllGetClassObject
DllRegisterServer
DllRegisterServer
DllCanUnloadNow

dsprop

ReportError
MsgBox
ErrMsg
FindSheet
MsgBox
CheckADsError
CheckADsError
ErrMsg
ReportError
FindSheet
MsgBox
ErrMsg
FindSheet

Sections

.text
Size: 1024B - Virtual size: 780B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 12KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 1.4MB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 802KB - Virtual size: 801KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 67B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 512B - Virtual size: 144B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy