56c181b065c0b194c479a371448ad1c3f296ef0c073854f59b23f0882354924d | Triage

Submit
Reports

Overview

overview

Static

static

56c181b065...4d.exe

windows7-x64

56c181b065...4d.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

56c181b065c0b194c479a371448ad1c3f296ef0c073854f59b23f0882354924d.exe

Resource

win7-20220812-en

persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

56c181b065c0b194c479a371448ad1c3f296ef0c073854f59b23f0882354924d.exe

Resource

win10v2004-20220812-en

persistence spyware stealer upx

windows10-2004-x64

4 signatures

150 seconds

General

Target

56c181b065c0b194c479a371448ad1c3f296ef0c073854f59b23f0882354924d
Size

179KB
MD5

0c0e28d39fbcccb3ad8381552fccfb20
SHA1

27e0a1d21009131fac4341e63deb2e3ff5bd341c
SHA256

56c181b065c0b194c479a371448ad1c3f296ef0c073854f59b23f0882354924d
SHA512

544d18b62b54370915568546376e95ac9b723e331dbca61d8acb549ec5a45ea313e365737dc27f87b24b4b631f431bb7c2eb58d2e5fde051d8cacc44e0f351a5
SSDEEP

3072:aGGWusyDukfAnIogyUiYwS8pBOgq12xWTl70Mu30CT:857DukIIjiFSpgqAx6VuJ

Score

N/A

Malware Config

Signatures

Files

56c181b065c0b194c479a371448ad1c3f296ef0c073854f59b23f0882354924d
.exe windows x86

1e8df4b46223715c201f6ab69b2c3c43

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetAtomNameW
SetEndOfFile
SearchPathW
GetVersionExW
CompareStringW
IsDBCSLeadByte
GetUserDefaultLangID
LockFile
UnlockFile
EnumResourceNamesA
FlushFileBuffers
GetFileType
GetProfileStringW
FindResourceExA
FileTimeToSystemTime
FileTimeToLocalFileTime
CreateHardLinkW
GetFileAttributesA
GetFileTime
GetVolumeInformationW
GetSystemDirectoryW

setupapi

pSetupWriteLogError
CMP_WaitNoPendingInstallEvents
SetupDiGetDeviceRegistryPropertyW
CM_Get_DevNode_Status

ole32

CoTaskMemFree
CoTaskMemRealloc
OleInitialize
CoInitializeSecurity
StringFromCLSID
CoCreateInstance
CoTaskMemAlloc
StringFromGUID2
IIDFromString
OleUninitialize

Sections

.text
Size: 96KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 79KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 260KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy