788c0d4808109541a9e4c73ff9c894e944baaf63cf9569c73af9f1db226cd6d7 | Triage

Submit
Reports

Overview

overview

Static

static

788c0d4808...d7.exe

windows7-x64

788c0d4808...d7.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

788c0d4808109541a9e4c73ff9c894e944baaf63cf9569c73af9f1db226cd6d7.exe

Resource

win7-20220812-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

788c0d4808109541a9e4c73ff9c894e944baaf63cf9569c73af9f1db226cd6d7.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

788c0d4808109541a9e4c73ff9c894e944baaf63cf9569c73af9f1db226cd6d7
Size

115KB
MD5

4908db79332900317e3260d23b779c50
SHA1

a94886ac46d7e0bcd9abe4cb445cf9c6770fdbc4
SHA256

788c0d4808109541a9e4c73ff9c894e944baaf63cf9569c73af9f1db226cd6d7
SHA512

fe339cdf5b0ea0bed1aa73fddc2cf97e71257930f965d2f546cd0b88f87f7666eceabcaf5cf72fcc303f94ced65293c77be5abae2445bfa01e2ad11cf6716584
SSDEEP

1536:w4ImpGCH50wKcW23SJviC3sEk5Ifwb4RA4E4/rBr6iQMHuxRR6OwrVbo7:wOpGCK+3SJ//QIfwb4RAGYCHy6g

Score

N/A

Malware Config

Signatures

Files

788c0d4808109541a9e4c73ff9c894e944baaf63cf9569c73af9f1db226cd6d7
.exe windows x86

5b48bfe8aa7f128156d2bce3edb98e1d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

SetPriorityClass
GetStartupInfoA
IsValidLocale
CloseHandle
GetModuleHandleA
ReadFile
WriteConsoleW
FindResourceA
WriteConsoleW
GetFileTime
lstrcpyW
ReleaseMutex
lstrlenW
IsBadStringPtrA
GetFileAttributesA
GetLastError
HeapCreate
FormatMessageA
WriteConsoleW
GetFileSize
GetCurrentDirectoryA

msftedit

RichComboBoxWndProc
RichEditWndProc
SetCustomTextOutHandlerEx
RichListBoxWndProc

clbcatq

CheckMemoryGates
ComPlusMigrate
DllGetClassObject
SetupOpen
CheckMemoryGates
SetupOpen
ComPlusMigrate
SetSetupSave
SetSetupSave
CheckMemoryGates
SetupOpen
DllGetClassObject
ComPlusMigrate

dsprop

CheckADsError

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 105KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 1024B - Virtual size: 49B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy