05056056546c9a21e06f7519e36f1922a8861b7b704affb6659c126bac1b4a0b | Triage

Submit
Reports

Overview

overview

Static

static

0505605654...0b.exe

windows7-x64

0505605654...0b.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

05056056546c9a21e06f7519e36f1922a8861b7b704affb6659c126bac1b4a0b.exe

Resource

win7-20220901-en

persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

05056056546c9a21e06f7519e36f1922a8861b7b704affb6659c126bac1b4a0b.exe

Resource

win10v2004-20220812-en

persistence spyware stealer upx

windows10-2004-x64

4 signatures

150 seconds

General

Target

05056056546c9a21e06f7519e36f1922a8861b7b704affb6659c126bac1b4a0b
Size

176KB
MD5

84dc81ebcb43d1207b5e6dec8796404f
SHA1

e3777720e0cbea4c43ce55b6ae7382897da85473
SHA256

05056056546c9a21e06f7519e36f1922a8861b7b704affb6659c126bac1b4a0b
SHA512

999e50ddd933583a241066d5dec979199810b293d3a23e3a35ef2694293f99b95c36d1c40b79fb098ea1c8b00ee8237404f00d7dccf6254e59c52e1166522646
SSDEEP

3072:c7nT/jskyVMHcLl2Z8nnDLjVaJ/rPP1MDZy2zmVyZGgEleYNbZqVmfKs:c//jYVocp3nDLZAr31M93wYKeYNkWK

Score

N/A

Malware Config

Signatures

Files

05056056546c9a21e06f7519e36f1922a8861b7b704affb6659c126bac1b4a0b
.exe windows x86

a96b9f4ab5386087455affa3072116fb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RtlUnwind
GetAtomNameW
HeapSize
HeapReAlloc
GetACP
TlsSetValue
VirtualAlloc
GetConsoleOutputCP
SetStdHandle
MultiByteToWideChar
GetTimeFormatA
TlsGetValue
EnumResourceNamesA
TlsAlloc
GetLocaleInfoA
GetOEMCP
EnumSystemCodePagesA
WriteConsoleA
GetDateFormatA
IsValidCodePage
SetFilePointer
GetCPInfo
RaiseException

occache

FindControlClose

shell32

SHGetDataFromIDListW
SHBrowseForFolderW
SHGetSpecialFolderLocation
ShellExecuteExW
DragAcceptFiles
SHGetMalloc
SHGetDesktopFolder
SHAppBarMessage
ShellExecuteW
SHGetPathFromIDListW
SHGetFileInfoW
Shell_NotifyIconW

Sections

.text
Size: 85KB - Virtual size: 477KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 88KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy