27dc00d9b3c6cde2257844c3a9fb7ec64e18902057299f33fd8af83d8b7a95fa | Triage

Submit
Reports

Overview

overview

8

Static

static

27dc00d9b3...fa.exe

windows7-x64

8

27dc00d9b3...fa.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

27dc00d9b3c6cde2257844c3a9fb7ec64e18902057299f33fd8af83d8b7a95fa.exe

Resource

win7-20220812-en

spyware stealer upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

27dc00d9b3c6cde2257844c3a9fb7ec64e18902057299f33fd8af83d8b7a95fa.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

27dc00d9b3c6cde2257844c3a9fb7ec64e18902057299f33fd8af83d8b7a95fa
Size

183KB
MD5

934777a7a77264a8322f60c6c50bbcaa
SHA1

83d0874c5b82e5bd473663a936898bba47a2a71c
SHA256

27dc00d9b3c6cde2257844c3a9fb7ec64e18902057299f33fd8af83d8b7a95fa
SHA512

6aed091dcd4f93b1225fe345290ccda56af62075b5984185d793b44e5ca71be890d60243c74d283e9dbce6a72f8c41371c8654777903cc6285bf032faf3d9324
SSDEEP

3072:TMSn4mc9CXu9yP0KixtsdV8xJ8hXkR1QxCSuvToiGvDD4avfaa93AAZK3LPkd:THDUB9xPqdVk+hXuHoEavfaC3ByLm

Score

N/A

Malware Config

Signatures

Files

27dc00d9b3c6cde2257844c3a9fb7ec64e18902057299f33fd8af83d8b7a95fa
.exe windows x86

c991f2cd98434a762bbe244e15e011ad

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

QueryPerformanceCounter
GetLocaleInfoA
GetCPInfoExW
RaiseException
GetStdHandle
WriteFile
MultiByteToWideChar
GetEnvironmentStrings
DeleteCriticalSection
GetThreadLocale
GetCPInfo
InitializeCriticalSection
LeaveCriticalSection
GetStartupInfoA
EnumResourceTypesA
TlsSetValue
HeapSize
GetEnvironmentStringsW
EnterCriticalSection
SetHandleCount
GetTickCount
FreeEnvironmentStringsW
GetVersionExA
LoadLibraryW
GetACP
WideCharToMultiByte
UnhandledExceptionFilter
lstrlenW
InterlockedExchange
GetLastError
InterlockedIncrement
FreeEnvironmentStringsA
TlsGetValue
GetOEMCP
GetFileType
GetCurrentProcessId

msimg32

AlphaBlend
TransparentBlt

gdi32

GetTextMetricsA
DeleteObject
GetTextExtentPointA
GetDeviceCaps
SelectObject
CreateFontIndirectA

ole32

CoGetMalloc
CoTaskMemFree
CoCreateInstance
StringFromGUID2
CoTaskMemAlloc
CoTaskMemRealloc

Sections

.text
Size: 107KB - Virtual size: 107KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy