3a31a03ab879b1055216d307e44a87a61b1a3a9469d78629bef0481fd2704130 | Triage

Submit
Reports

Overview

overview

Static

static

3a31a03ab8...30.exe

windows7-x64

3a31a03ab8...30.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

3a31a03ab879b1055216d307e44a87a61b1a3a9469d78629bef0481fd2704130.exe

Resource

win7-20220812-en

persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

3a31a03ab879b1055216d307e44a87a61b1a3a9469d78629bef0481fd2704130.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

3a31a03ab879b1055216d307e44a87a61b1a3a9469d78629bef0481fd2704130
Size

177KB
MD5

932ac3601614a4f2bc24bf77f0240b7e
SHA1

809385457b895a2e23dffb3443ef5ff601c090c0
SHA256

3a31a03ab879b1055216d307e44a87a61b1a3a9469d78629bef0481fd2704130
SHA512

fe4c6ff4bdd6adf60a6c4be6cbeb5e351efa13cadea32e1fa9eee6a7e55623f1ed474d5bdbf5cf202e265573aea04cc91ee7913e818285698a57b76344ea1978
SSDEEP

3072:CUKfhDQw5Pp4xrNuVazkOrwljuUgdFzQGyQL+soB7jOHw2aGofoJE2AsEvbtR1g/:CUqDr5mxrNuVa1w9uVcLQL+rXGoQJE2P

Score

N/A

Malware Config

Signatures

Files

3a31a03ab879b1055216d307e44a87a61b1a3a9469d78629bef0481fd2704130
.exe windows x86

30be0abd8ed91563fe178edd218fb2f1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

UnhandledExceptionFilter
DeleteCriticalSection
RaiseException
TlsSetValue
EnterCriticalSection
GetCPInfoExW
SetHandleCount
GetACP
GetEnvironmentStrings
LeaveCriticalSection
GetEnvironmentStringsW
WideCharToMultiByte
lstrlenW
FreeEnvironmentStringsW
InitializeCriticalSection
EnumResourceTypesA
GetLocaleInfoA
InterlockedIncrement
GetThreadLocale
GetTickCount
GetStdHandle
GetFileType
QueryPerformanceCounter
GetStartupInfoA
InterlockedExchange
FreeEnvironmentStringsA
HeapSize
GetCommandLineW
GetOEMCP
GetLastError
TlsGetValue
GetCPInfo
WriteFile
GetVersionExA
MultiByteToWideChar
GetCurrentProcessId

msimg32

AlphaBlend
TransparentBlt

gdi32

GetDeviceCaps
SelectObject
GetTextMetricsA
GetTextExtentPointA
DeleteObject
CreateFontIndirectA

ole32

CoGetMalloc
CoTaskMemFree
CoTaskMemAlloc
CoCreateInstance
StringFromGUID2
CoTaskMemRealloc

Sections

.text
Size: 106KB - Virtual size: 105KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 256KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy