cfc16309b060c02070a6a16e4650aef32221cc2cc5fc89f584aa43776b1b3503 | Triage

Submit
Reports

Overview

overview

Static

static

cfc16309b0...03.exe

windows7-x64

cfc16309b0...03.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

cfc16309b060c02070a6a16e4650aef32221cc2cc5fc89f584aa43776b1b3503.exe

Resource

win7-20220901-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

cfc16309b060c02070a6a16e4650aef32221cc2cc5fc89f584aa43776b1b3503.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

cfc16309b060c02070a6a16e4650aef32221cc2cc5fc89f584aa43776b1b3503
Size

137KB
MD5

a2977c666610cb2f8e37b45dca305080
SHA1

e0488c1031e97f8e8810d2cd1c56468aea538233
SHA256

cfc16309b060c02070a6a16e4650aef32221cc2cc5fc89f584aa43776b1b3503
SHA512

7799954888e7c6ff9206ee8671fb3feb96f6c4679473c19a6a2f7eae0f7eae4ab8b91efa2a16a43e25d4aa563656eb002f55d878ecbe9f63ea42ef916c79a652
SSDEEP

3072:OS40HeVDtfIqbr6IUn3yVjgPM3z5OCNP6rsMGbh4:d43tg66n3yVUM3z5OCYrzU4

Score

N/A

Malware Config

Signatures

Files

cfc16309b060c02070a6a16e4650aef32221cc2cc5fc89f584aa43776b1b3503
.exe windows x86

5389990ebe9482b9355677e78790ecae

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

LoadLibraryA
DeviceIoControl
GetPrivateProfileIntW
FindVolumeClose
CloseHandle
DeleteFileA
HeapFree
CreateEventW
GetStdHandle
GetCurrentProcess
lstrlenA
DeviceIoControl
VirtualProtectEx
GetFileAttributesA
LocalLock
GetDriveTypeA
GetCurrentThread
OpenMutexA
HeapDestroy
GetStringTypeA
GetPrivateProfileSectionA

uxtheme

GetThemeTextMetrics
GetThemeColor
GetThemeSysSize
IsThemeActive
OpenThemeData
DrawThemeBackground
DrawThemeEdge
CloseThemeData
GetThemeTextExtent
SetWindowTheme
CloseThemeData
GetThemeBool
GetWindowTheme

odbccp32

SQLGetAvailableDrivers
SQLConfigDataSource
SQLInstallDriver
SQLInstallODBC

msasn1

ASN1BERDecBool

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 496B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 128KB - Virtual size: 127KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.orpc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy