352f40eda3684c45df60887fefc588d39135669c3bdf9eced4fee16ecbb2dccb | Triage

Submit
Reports

Overview

overview

8

Static

static

352f40eda3...cb.exe

windows7-x64

8

352f40eda3...cb.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

352f40eda3684c45df60887fefc588d39135669c3bdf9eced4fee16ecbb2dccb.exe

Resource

win7-20220812-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

352f40eda3684c45df60887fefc588d39135669c3bdf9eced4fee16ecbb2dccb.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

352f40eda3684c45df60887fefc588d39135669c3bdf9eced4fee16ecbb2dccb
Size

800KB
MD5

843df0ac5c8e99e7753989ab39914230
SHA1

230f7fe56f7767f146c68a4b46165d7e0c83147b
SHA256

352f40eda3684c45df60887fefc588d39135669c3bdf9eced4fee16ecbb2dccb
SHA512

b5065b6da113c9bbdaa83605abe2667c28f0f9b72d14e90491e53e8f1fc72a9800408998b1019d23903d7bc237df5b9557ce2c905a30ff2358ef13e17351037c
SSDEEP

12288:zQU+skSsWUlytV/AX4p6jAZ3iVrzLNijv9EP:nkSsNUV/AX4MEZ3i9LNijlI

Score

N/A

Malware Config

Signatures

Files

352f40eda3684c45df60887fefc588d39135669c3bdf9eced4fee16ecbb2dccb
.exe windows x86

17d7c1cc6584f6850c6b9f7d0544575c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetProcessHeap
HeapDestroy
SuspendThread
IsBadReadPtr
SetEvent
SetFilePointer
VirtualProtect
GetStdHandle
lstrlenA
CreateDirectoryA
GetPrivateProfileSectionA
GetVersionExA
GetPriorityClass
CreateMutexW
IsValidLocale
GetLocaleInfoA
ResumeThread
HeapSize
GetPrivateProfileIntA
GetCurrentThreadId
GetModuleHandleA
GetFileAttributesW
CreatePipe
GetModuleFileNameA
GlobalSize

user32

DestroyMenu
GetScrollInfo
SetRect
DestroyIcon
GetWindowLongA
GetWindowTextW
wsprintfA
DispatchMessageA
SetCursor
GetWindowLongA
LoadCursorA
DrawIcon
PeekMessageA

duser

GetDebug
GetGadget
GetGadgetFocus
GetGadgetRect

advapi32

IsValidAcl

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 692KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 793KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy