fab34ab646fea442715987811dca7accc67af837512314096b0ec3328beb6e7b | Triage

Submit
Reports

Overview

overview

8

Static

static

fab34ab646...7b.exe

windows7-x64

8

fab34ab646...7b.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

fab34ab646fea442715987811dca7accc67af837512314096b0ec3328beb6e7b.exe

Resource

win7-20220812-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

fab34ab646fea442715987811dca7accc67af837512314096b0ec3328beb6e7b.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

fab34ab646fea442715987811dca7accc67af837512314096b0ec3328beb6e7b
Size

811KB
MD5

92a9a5711a92dae423d1990d2f3ce17f
SHA1

1bd59786790a6de39c43ed079f63ea2b00913058
SHA256

fab34ab646fea442715987811dca7accc67af837512314096b0ec3328beb6e7b
SHA512

0a374a5900034a1baafac76fc4584e52f4e1d15088f739df8c6619a77295b2ec9bcbb1e83474d06b1bf90e57b0076d9db25cb3f6506490099375b0fb2ba78cfe
SSDEEP

12288:fs8tvH7RPtjRq4cuCbSkgzpYAj36ekCIyjNOylLA1IXcVH4c1/LZ/3JQXaUdnT:ZfNP3q4cfbjeW+NOyhA1IGFZfJ/U

Score

N/A

Malware Config

Signatures

Files

fab34ab646fea442715987811dca7accc67af837512314096b0ec3328beb6e7b
.exe windows x86

17aa086cc066b34023e163590ba19995

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

IsBadWritePtr
GetExitCodeProcess
LeaveCriticalSection
LoadLibraryA
CreateEventA
SetFileTime
lstrcpyW
ReadFile
SetFileTime
SetConsoleTitleA
InterlockedExchange
CloseHandle
HeapCreate
GetLastError
GetStartupInfoW
GetFileSize
HeapSize
lstrcatA
SetFileTime
GetModuleHandleA
GetStringTypeA

mstscax

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

shell32

DllUnregisterServer
ShellAboutA
SHFree
DragAcceptFiles
StrChrA
SHGetDiskFreeSpaceA
DuplicateIcon
SHGetSettings
ExtractIconA
SHGetMalloc
ShellMessageBoxW
DragFinish
DragQueryFileA

rasapi32

DwRasUninitialize

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 288B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rich
Size: 1KB - Virtual size: 176B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ole
Size: 512B - Virtual size: 95B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 798KB - Virtual size: 798KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy