affff8b0de6629c4430dea7adbb4ec0bcc36625600e9d9003624ff91fde8a261 | Triage

Submit
Reports

Overview

overview

Static

static

affff8b0de...61.exe

windows7-x64

affff8b0de...61.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

affff8b0de6629c4430dea7adbb4ec0bcc36625600e9d9003624ff91fde8a261.exe

Resource

win7-20220812-en

persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

affff8b0de6629c4430dea7adbb4ec0bcc36625600e9d9003624ff91fde8a261.exe

Resource

win10v2004-20220901-en

persistence spyware stealer upx

windows10-2004-x64

4 signatures

150 seconds

General

Target

affff8b0de6629c4430dea7adbb4ec0bcc36625600e9d9003624ff91fde8a261
Size

171KB
MD5

838ab62c48c9e108549a5f3fb693f39c
SHA1

4d2b5f308ebb9df9836976052a077f11e7590b1f
SHA256

affff8b0de6629c4430dea7adbb4ec0bcc36625600e9d9003624ff91fde8a261
SHA512

c304f1040ecb141d1d2fd37e4ff945ba196ef70507363e42678243af3e5466163840e4e37f10d2926122a29b1cd3af23b0b1de70a032627e8277336c72580810
SSDEEP

3072:+qFp1MUOlc42Gt70PJm8Fck1FNXR6rJELYG18QYcz0qzc5BXqIDzfOyqGE++C7rW:9FglcrG5EJ2kD95cgNYcU5BaIvGp

Score

N/A

Malware Config

Signatures

Files

affff8b0de6629c4430dea7adbb4ec0bcc36625600e9d9003624ff91fde8a261
.exe windows x86

3e9394abfe13d22b06207bca078c027e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFilePointer
IsValidCodePage
GlobalGetAtomNameA
GetConsoleOutputCP
GetTimeFormatA
HeapReAlloc
TlsSetValue
GetOEMCP
RtlUnwind
TlsAlloc
EnumResourceNamesA
WriteConsoleA
SetStdHandle
MultiByteToWideChar
GetLocaleInfoA
GetModuleHandleW
VirtualAlloc
TlsGetValue
GetACP
GetDateFormatA
GetCPInfo
HeapSize
RaiseException

occache

FindControlClose

shell32

SHGetFolderLocation
SHGetFileInfoW
SHGetPathFromIDListW
DragAcceptFiles
SHGetMalloc
ShellExecuteW
SHGetSpecialFolderLocation
SHGetDesktopFolder
SHBrowseForFolderW
SHAppBarMessage
ShellExecuteExW
Shell_NotifyIconW

Sections

.text
Size: 83KB - Virtual size: 479KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy