7a68f032c2bd597fdb4835eff4a83c1877569531b9b5773252698e4c6fb3f8e7 | Triage

Submit
Reports

Overview

overview

8

Static

static

7a68f032c2...e7.exe

windows7-x64

8

7a68f032c2...e7.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

7a68f032c2bd597fdb4835eff4a83c1877569531b9b5773252698e4c6fb3f8e7.exe

Resource

win7-20220812-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

7a68f032c2bd597fdb4835eff4a83c1877569531b9b5773252698e4c6fb3f8e7.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

7a68f032c2bd597fdb4835eff4a83c1877569531b9b5773252698e4c6fb3f8e7
Size

799KB
MD5

93c64d1bb69350094972af3c65f27020
SHA1

9cad11a8c5d75fffaa2b273707949700ae21b02b
SHA256

7a68f032c2bd597fdb4835eff4a83c1877569531b9b5773252698e4c6fb3f8e7
SHA512

559fa9945eb98bf6d3de9bb179f67110810a07fee6ad7f96b24d2a42c78f8b832645ee6f2785ad5dcb150ac5294a318138de46435196d8116c7b47aa10c83dd1
SSDEEP

12288:8I+kjFGTiXc0lxDgYAIMN15yau+tTLGdixvzpu46qYSEG4gfexMPIZ0fJdZ3m/z:TppGTclaIm15yEtTLpQ/gfYMgGfh3m

Score

N/A

Malware Config

Signatures

Files

7a68f032c2bd597fdb4835eff4a83c1877569531b9b5773252698e4c6fb3f8e7
.exe windows x86

d21c2e296c53b26e728085148f37668d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

OpenEventW
GetTickCount
lstrlenA
LocalFlags
CreateFileW
GetCurrentThreadId
VirtualProtect
InterlockedExchange
GetModuleHandleA
SetFilePointer
SetEvent
LeaveCriticalSection
SuspendThread
CreateMutexA
CreateFileW
ResumeThread
GetModuleFileNameA
AddAtomW
GetStdHandle
GetFileAttributesW
IsValidLocale
GetVersionExA
CreateDirectoryA
GetLocaleInfoA
HeapDestroy

user32

GetWindowLongA
IsMenu
DestroyMenu
MessageBoxA
GetWindowLongA
DispatchMessageA
GetWindowTextA
LoadCursorA
PeekMessageA
DestroyIcon
IsMenu
SetRect
wsprintfA

dplayx

DllUnregisterServer
DllGetClassObject
DllCanUnloadNow
DllRegisterServer

advapi32

IsValidAcl

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 756KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 10B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 793KB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy