db372a724e12c8c6aef92517ce3b58d45069cf852526950e8de96ec8100d9a0f | Triage

Submit
Reports

Overview

overview

8

Static

static

db372a724e...0f.exe

windows7-x64

8

db372a724e...0f.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

db372a724e12c8c6aef92517ce3b58d45069cf852526950e8de96ec8100d9a0f.exe

Resource

win7-20220901-en

spyware stealer upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

db372a724e12c8c6aef92517ce3b58d45069cf852526950e8de96ec8100d9a0f.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

db372a724e12c8c6aef92517ce3b58d45069cf852526950e8de96ec8100d9a0f
Size

178KB
MD5

07044f71741a5e01d87b574a7c8c8a31
SHA1

0c46672ffbef09e67c1b70217e5381108f84cbfa
SHA256

db372a724e12c8c6aef92517ce3b58d45069cf852526950e8de96ec8100d9a0f
SHA512

74fe17091bc5c0b89136525c04a83e52a0aa0eeec1bd25507245ef41ce1374a81a20dbdc29cd87555b4262d34f3443568c615c890603dbb1e8ee64d2a34a5244
SSDEEP

3072:OGK/CuMCiAn3WOPmlX/krfy57bYYpbvC2NlcE2nktdcX00aKe:W/KCZn8RkWJbjJ65ktdAS

Score

N/A

Malware Config

Signatures

Files

db372a724e12c8c6aef92517ce3b58d45069cf852526950e8de96ec8100d9a0f
.exe windows x86

f0b00b24f2c06b363ab03292d20123c2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

winspool.drv

DocumentPropertiesW

user32

wsprintfW
GetAncestor
TranslateMessage
CharUpperW
GetDC
CharNextW
PostThreadMessageW
DispatchMessageW
SetTimer
KillTimer
GetMessageW
UnregisterClassA

kernel32

FindClose
lstrcpynW
GetACP
MultiByteToWideChar
lstrlenW
GetTickCount
CheckRemoteDebuggerPresent
lstrcmpiW
EnumResourceTypesW
GetCPInfo
OutputDebugStringW
DeleteCriticalSection
GetLastError
LockResource
GlobalAlloc
GlobalFree
InitializeCriticalSection
lstrcpyA
lstrcpyW
WideCharToMultiByte
GetModuleHandleW

Sections

.text
Size: 122KB - Virtual size: 121KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 980B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 53KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.isete
Size: 1024B - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy