4ae7dea5d0b7a63fc67623f36a00f9979459e87f58a41d6b111b0f10187527b0 | Triage

Submit
Reports

Overview

overview

8

Static

static

4ae7dea5d0...b0.exe

windows7-x64

8

4ae7dea5d0...b0.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

4ae7dea5d0b7a63fc67623f36a00f9979459e87f58a41d6b111b0f10187527b0.exe

Resource

win7-20220812-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

4ae7dea5d0b7a63fc67623f36a00f9979459e87f58a41d6b111b0f10187527b0.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

4ae7dea5d0b7a63fc67623f36a00f9979459e87f58a41d6b111b0f10187527b0
Size

797KB
MD5

51d35aa5ceae2bad1842f382009ae250
SHA1

f6dbdfd13cf70e56c5c8545046c2343c803dd4de
SHA256

4ae7dea5d0b7a63fc67623f36a00f9979459e87f58a41d6b111b0f10187527b0
SHA512

87a5b95ccf7f2bcc1524b24ec186f186f065c80c6ca3f31038a562d94392c286f884596b5447cf2209fb9c9184ebebbd0b5e452d6590add563066aeddd73c507
SSDEEP

12288:i1cyTzl9vYrbATBUPFa61yEH5w58te9GkoPkRczGa3u2D0rHm5TxY:iuyvjvYIB4EWZw5C4Ul3uI0KvY

Score

N/A

Malware Config

Signatures

Files

4ae7dea5d0b7a63fc67623f36a00f9979459e87f58a41d6b111b0f10187527b0
.exe windows x86

a04755b4368cc78445c23d8a6ca49802

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

CloseHandle
SetCommBreak
GetFileAttributesW
GetCurrentProcess
CreateEventA
GetStringTypeA
DeviceIoControl
RemoveDirectoryW
FindClose
SetLastError
LocalFlags
GetVersionExA
GetPrivateProfileIntA
CreateDirectoryW
GetPrivateProfileSectionA
GetModuleHandleA
GetFileAttributesW
VirtualProtectEx
GlobalLock
GetCurrentThread
HeapFree

user32

SetFocus
GetWindowLongW
GetWindowTextW
DispatchMessageA
PostMessageW
IsDialogMessageA
wsprintfW
PeekMessageW
LoadCursorW
IsZoomed
SetCursorPos
IsWindow
GrayStringA

mswsock

getnetbyname
GetAddressByNameA
GetNameByTypeA
GetServiceA

ntshrui

IsPathSharedA

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 699KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 789KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.import
Size: 512B - Virtual size: 384B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy