a144d5e9f94fff14c3c6086bfd6b30c0a3b8dccde5c1611ffa8cd982a700d5ac | Triage

Submit
Reports

Overview

overview

Static

static

a144d5e9f9...ac.exe

windows7-x64

a144d5e9f9...ac.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

a144d5e9f94fff14c3c6086bfd6b30c0a3b8dccde5c1611ffa8cd982a700d5ac.exe

Resource

win7-20220812-en

evasion persistence spyware stealer trojan

windows7-x64

14 signatures

150 seconds

Behavioral task

behavioral2

Sample

a144d5e9f94fff14c3c6086bfd6b30c0a3b8dccde5c1611ffa8cd982a700d5ac.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

6 signatures

150 seconds

General

Target

a144d5e9f94fff14c3c6086bfd6b30c0a3b8dccde5c1611ffa8cd982a700d5ac
Size

726KB
MD5

a2599ba1a3d4258816a5e1d8e77d4ca0
SHA1

4fb04e4e287013107835f4d87c31f2722e581d34
SHA256

a144d5e9f94fff14c3c6086bfd6b30c0a3b8dccde5c1611ffa8cd982a700d5ac
SHA512

f172f271397142fecc692e790359a05ed1e28d6d7722cb1aaa828ea73d10ed9123bbfb7d38982f98c1466ffec706fbf0b5936d21992532fb9f6fe14c7cfe6385
SSDEEP

12288:kjDUcn9dGwJNB5otkD/gDElIIyTvGIjm4+B4XqqD1UJzf90uqnd+C0Zu99R7KV5:kjDhFJNktc4D4IIyGI6B4XqqxUYuqdY3

Score

N/A

Malware Config

Signatures

Files

a144d5e9f94fff14c3c6086bfd6b30c0a3b8dccde5c1611ffa8cd982a700d5ac
.exe windows x86

44233377522902d43a9c6ee23f3613d9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ntdll

NlsMbCodePageTag
ZwQueryIntervalProfile
RtlRevertMemoryStream

advapi32

CryptAcquireContextA

kernel32

EnumResourceTypesA
GetCurrentProcess
GetProcessId
GetProcessHeap

Sections

.text
Size: 718KB - Virtual size: 720KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy