02e40ba5114476e79b39797b4403fe054591489419a5024c69687d465b15626a | Triage

Submit
Reports

Overview

overview

Static

static

02e40ba511...6a.exe

windows7-x64

02e40ba511...6a.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

02e40ba5114476e79b39797b4403fe054591489419a5024c69687d465b15626a.exe

Resource

win7-20220812-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

02e40ba5114476e79b39797b4403fe054591489419a5024c69687d465b15626a.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

02e40ba5114476e79b39797b4403fe054591489419a5024c69687d465b15626a
Size

130KB
MD5

a047e3ef577d8613e3cbaa8f1469bee0
SHA1

128b2c26a9ed5a8aba6d6998e8953d6b9432f783
SHA256

02e40ba5114476e79b39797b4403fe054591489419a5024c69687d465b15626a
SHA512

abf799cb58655937421c724a4453f221b1503a831938679a2f800ff3986bf64f330a88d298cf6b968a999fd0b017cfb6d3a4815763680fa53311780e686d84a8
SSDEEP

3072:/z6bxyyOWWOtd01l6h9k1X9vG0fDDK3od:Wty23WQSRGIWg

Score

N/A

Malware Config

Signatures

Files

02e40ba5114476e79b39797b4403fe054591489419a5024c69687d465b15626a
.exe windows x86

7f7601990d110041ef1ed7c40d615334

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
GetFileAttributesW
GetStringTypeA
GetCurrentThread
CreateEventA
GetCurrentProcess
SetLastError
GlobalLock
GetPrivateProfileSectionA
FindClose
HeapFree
GetFileAttributesW
GetVersionExA
GetPrivateProfileIntA
GetStdHandle
CreateDirectoryW
VirtualProtectEx
DeviceIoControl
RemoveDirectoryW
CloseHandle
LocalFlags

user32

IsDialogMessageA
PostMessageW
GetWindowLongW
LoadCursorW
DispatchMessageA
PeekMessageW
SetFocus
SetCursorPos
GetWindowTextW
IsWindow
wsprintfW
IsCharLowerA
IsZoomed

ntmarta

AccConvertSDToAccess
AccConvertAclToAccess
AccFreeIndexArray
AccGetExplicitEntries

uxtheme

CloseThemeData

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 12KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 121KB - Virtual size: 121KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.import
Size: 512B - Virtual size: 372B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy