7cafe446247830bd986d3c614f444ce1fb390a65e32432b1c0b9ff32361c7365 | Triage

Submit
Reports

Overview

overview

Static

static

7cafe44624...65.exe

windows7-x64

7cafe44624...65.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

7cafe446247830bd986d3c614f444ce1fb390a65e32432b1c0b9ff32361c7365.exe

Resource

win7-20220812-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

7cafe446247830bd986d3c614f444ce1fb390a65e32432b1c0b9ff32361c7365.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

7cafe446247830bd986d3c614f444ce1fb390a65e32432b1c0b9ff32361c7365
Size

134KB
MD5

93d9a4f79d8141d81700a11bae3ccde0
SHA1

3dd2a5e629cbada838114614ad22b729f8230484
SHA256

7cafe446247830bd986d3c614f444ce1fb390a65e32432b1c0b9ff32361c7365
SHA512

9f5ab8572312e46f86ddaed65838cd1787f95a65ec9e8af17c94df60d83ea512bbc3fe22802ccb34bd2dc8d5c0ff0da26ef40d8ae8a1c3a5665ff73daf3be7b6
SSDEEP

3072:RA9mjxHJrPFW/S+jm02VdfN4BG9d+MjfG7YatlWi:S9mFxPFW/Hb2VdfiB6LG7xtlW

Score

N/A

Malware Config

Signatures

Files

7cafe446247830bd986d3c614f444ce1fb390a65e32432b1c0b9ff32361c7365
.exe windows x86

df01f032fe484c3b0d7ca96027546ca5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetPrivateProfileIntW
GetCurrentThread
GetDriveTypeA
OpenMutexW
HeapDestroy
DeleteFileA
LoadLibraryW
TlsGetValue
ResumeThread
CreateEventW
DeviceIoControl
VirtualProtectEx
lstrlenA
DeviceIoControl
GetStringTypeA
GetPrivateProfileSectionA
HeapFree
GetFileAttributesA
ClearCommBreak
GetProcessHeap
SetLastError

rasapi32

DwEnumEntryDetails
RasDialA
DwRasUninitialize
DwCloneEntry
RasDialA
DwRasUninitialize
DwEnumEntryDetails
DwRasUninitialize
RasDeleteEntryA
RasDialA
DwEnumEntryDetails
RasDeleteEntryA
DwCloneEntry

p2p

PeerPnrpStartup
PeerGetNextItem
PeerEnumGroups
PeerFreeData

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 352B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 128KB - Virtual size: 127KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.orpc
Size: 512B - Virtual size: 288B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy