196f84e82948c8119e6fa080563980b39d9df4211c11ee2ade1e0f3e93013850 | Triage

Submit
Reports

Overview

overview

8

Static

static

196f84e829...50.exe

windows7-x64

8

196f84e829...50.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

196f84e82948c8119e6fa080563980b39d9df4211c11ee2ade1e0f3e93013850.exe

Resource

win7-20220901-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

196f84e82948c8119e6fa080563980b39d9df4211c11ee2ade1e0f3e93013850.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

196f84e82948c8119e6fa080563980b39d9df4211c11ee2ade1e0f3e93013850
Size

815KB
MD5

f3fa65c5e4a9567f0e49be1b743d2565
SHA1

8d062478df2dc0c9f6a50d5aa7f7af647885d385
SHA256

196f84e82948c8119e6fa080563980b39d9df4211c11ee2ade1e0f3e93013850
SHA512

403a28cd3337b39c25d7a87edad065bb5da75d06de4e2ab9d71e7289ccfddb09578d15a0a3eb33362fc4f4ebebb29792645364e4610bfb28480a890462bc84f9
SSDEEP

12288:3sz8E0cedRhOtq8ntd2iw8tqi3yd19rdbA5yruXb1aXaOyHOqbfz8MJ9LAoQ4T:3qFebhb8LJw8sDhA5yrFqOYh1J84

Score

N/A

Malware Config

Signatures

Files

196f84e82948c8119e6fa080563980b39d9df4211c11ee2ade1e0f3e93013850
.exe windows x86

5147b5a23dc1f77cd9b73c27b0b08fc6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetDriveTypeW
GetDriveTypeW
GetDriveTypeW
GetVolumePathNameA
LoadLibraryA
FindResourceW
GetDriveTypeW
GetDriveTypeW
GetDriveTypeW
VirtualAlloc
GetCurrentDirectoryW
GetVolumeInformationW
GetFileSize
GetDriveTypeW
DeleteFileW
OpenMutexA
lstrlenA

netcfgx

NetClassInstaller
LanaCfgFromCommandArgs
NetPropPageProvider
NetCfgDiagFromCommandArgs

Sections

.play
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.odata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.gdata
Size: 801KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy