d745a4f30a9e5680b0921e4c888aa3a80d20c38c6908b845c189b7db4fde764c | Triage

Submit
Reports

Overview

overview

8

Static

static

d745a4f30a...4c.exe

windows7-x64

8

d745a4f30a...4c.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

d745a4f30a9e5680b0921e4c888aa3a80d20c38c6908b845c189b7db4fde764c.exe

Resource

win7-20220901-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

d745a4f30a9e5680b0921e4c888aa3a80d20c38c6908b845c189b7db4fde764c.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

d745a4f30a9e5680b0921e4c888aa3a80d20c38c6908b845c189b7db4fde764c
Size

811KB
MD5

45cd7df2dc58d24283ae668b9f6259fd
SHA1

9a8a7beef2b815fb59df68a348dd228a9499d6d5
SHA256

d745a4f30a9e5680b0921e4c888aa3a80d20c38c6908b845c189b7db4fde764c
SHA512

8e97914048f77ab60834adea9dd53b7ef12013b5698e038b3b2da927380eeb19f3a24f6700f85f388d86b0c14d8c0855b2c42d667950cba79a0e5e4849b3d8d5
SSDEEP

24576:y8XzacXN9WxYBXkZAmDHAdEjjDkHjqC4r5nriJK1:DXpexY02CAdwkHurX1

Score

N/A

Malware Config

Signatures

Files

d745a4f30a9e5680b0921e4c888aa3a80d20c38c6908b845c189b7db4fde764c
.exe windows x86

9e01f23ec81bf3d10f83ceaab07fc9bb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
GetModuleHandleA
EnterCriticalSection
GlobalFree
lstrlenW
InitializeCriticalSection
LeaveCriticalSection
CloseHandle
WriteConsoleW
VirtualProtectEx
GetDriveTypeA
GetStartupInfoA
GetFileSize
CreateFileA
Sleep
CreateDirectoryW
FindClose
GetCommandLineW
GetConsoleTitleW
DeleteFileA
GetConsoleMode
RemoveDirectoryA
TlsGetValue
GetModuleFileNameA
GetCalendarInfoA

user32

EqualRect
MessageBoxA
IsWindowEnabled
wsprintfA
GetWindowLongA
GetWindowLongA
GetSysColor
GetWindowDC
PeekMessageA
IsWindowVisible
IsWindow
FillRect
DispatchMessageA

cryptdlg

CertTrustInit
CertConfigureTrustA
CertTrustCleanup
CertTrustCertPolicy

advapi32

RegCloseKey

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 800KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy