339247f1053f4fc0384c2570bafa2e43b3a08e5cd28852637b5e3469206fc183 | Triage

Submit
Reports

Overview

overview

8

Static

static

339247f105...83.exe

windows7-x64

8

339247f105...83.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

339247f1053f4fc0384c2570bafa2e43b3a08e5cd28852637b5e3469206fc183.exe

Resource

win7-20220812-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

339247f1053f4fc0384c2570bafa2e43b3a08e5cd28852637b5e3469206fc183.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

339247f1053f4fc0384c2570bafa2e43b3a08e5cd28852637b5e3469206fc183
Size

796KB
MD5

db4a361861d89c754a3445e9784e5098
SHA1

fa5eb6fa9cc5ff73d1ae7033519d9aad78a70076
SHA256

339247f1053f4fc0384c2570bafa2e43b3a08e5cd28852637b5e3469206fc183
SHA512

b965b79be424b7e8a1bfcb97f99ee893876f2ff752a76e55f6a25bab13d8c653bbc9dda95f9fbd6409e6cb8f5463fb225b157aaf63fb51c5611ed4d8aad8a325
SSDEEP

12288:qjNsBv+jOr/IwkKqzoFsFCw64pVwZBLhgWibtavQvfd2ERLC451GTB:4yv+jC3n2VwbhgvZavQvfVRLno1

Score

N/A

Malware Config

Signatures

Files

339247f1053f4fc0384c2570bafa2e43b3a08e5cd28852637b5e3469206fc183
.exe windows x86

55a78513d1a3adc91e9ed89a604371a9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

ReadConsoleW
GetStdHandle
GetCommandLineA
GetProcessHeap
CancelIo
GetLocaleInfoA
ReleaseMutex
GetDriveTypeW
WriteFile
DeleteFileA
VirtualProtect
GetModuleHandleA
SetLocalTime
CreateMailslotA
HeapSize
CreateDirectoryA
IsBadWritePtr
SetLastError
ResetEvent
GetFileAttributesA
RemoveDirectoryA

user32

LoadCursorA
DispatchMessageA
PeekMessageA
GetCapture
wsprintfA
SetCursor
PostMessageA
GetWindowLongW
SetFocus
DrawIcon
GetCaretPos
GetWindowTextW
DestroyMenu

els

DllGetClassObject
DllGetClassObject
DllRegisterServer
DllRegisterServer

rasapi32

DwRasUninitialize

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 692KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 789KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imp
Size: 512B - Virtual size: 448B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy