054f2df2c9df97febd2b7caf8e63e164fde18e9f02e7f4105fcf7b241406d28d | Triage

Submit
Reports

Overview

overview

8

Static

static

054f2df2c9...8d.exe

windows7-x64

8

054f2df2c9...8d.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

054f2df2c9df97febd2b7caf8e63e164fde18e9f02e7f4105fcf7b241406d28d.exe

Resource

win7-20220812-en

persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

054f2df2c9df97febd2b7caf8e63e164fde18e9f02e7f4105fcf7b241406d28d.exe

Resource

win10v2004-20220812-en

persistence spyware stealer upx

windows10-2004-x64

4 signatures

150 seconds

General

Target

054f2df2c9df97febd2b7caf8e63e164fde18e9f02e7f4105fcf7b241406d28d
Size

180KB
MD5

92e70cb612b0df23eec24863124540bc
SHA1

4b5c493032a8323e6cc0b724db4a1f18f38b394f
SHA256

054f2df2c9df97febd2b7caf8e63e164fde18e9f02e7f4105fcf7b241406d28d
SHA512

502c560735b8c2a726f3a27f1e32fb81eedcd64b47773b76109143e8c9116a72d930e182fa2d645f7eae3974c238a5c57e77575df97a27a3de971931b905fcce
SSDEEP

3072:Y9xBomMgJZClSOIRlE6HC2NZz1wExH/lOKscqtKOq40UapY6F757B0:AjMgCILf3Zz1XxH9OLX3LaB75W

Score

N/A

Malware Config

Signatures

Files

054f2df2c9df97febd2b7caf8e63e164fde18e9f02e7f4105fcf7b241406d28d
.exe windows x86

2b1670acead1dd53432eb6b80cec1649

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

InternetReadFile
InternetOpenA
InternetOpenUrlA
InternetCloseHandle

kernel32

DeleteCriticalSection
LeaveCriticalSection
SetFirmwareEnvironmentVariableW
SetStdHandle
GetModuleHandleA
EnterCriticalSection
LCMapStringW
InitializeCriticalSection
EnumResourceTypesA
LocalAlloc
LCMapStringA
GetSystemInfo
LoadLibraryA
GetShortPathNameA
LocalFree
GetLastError
GetProcAddress
GetStringTypeA

gdiplus

GdipCloneImage

ole32

OleSave
CoTaskMemFree
StringFromGUID2
CoCreateInstance
CoTaskMemAlloc
CoTaskMemRealloc

winmm

timeGetTime
timeSetEvent

Sections

.text
Size: 109KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy