bf6e6082a7d4f36fa719f2c0b61d829d5d769c667038989f07fe48f8597f45e2 | Triage

Submit
Reports

Overview

overview

8

Static

static

bf6e6082a7...e2.exe

windows7-x64

8

bf6e6082a7...e2.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

bf6e6082a7d4f36fa719f2c0b61d829d5d769c667038989f07fe48f8597f45e2.exe

Resource

win7-20220812-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

bf6e6082a7d4f36fa719f2c0b61d829d5d769c667038989f07fe48f8597f45e2.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

bf6e6082a7d4f36fa719f2c0b61d829d5d769c667038989f07fe48f8597f45e2
Size

810KB
MD5

315325f544912a68464bf38e3edf6371
SHA1

6b62989f47a3de57182f51d6c8b019ed12a77d45
SHA256

bf6e6082a7d4f36fa719f2c0b61d829d5d769c667038989f07fe48f8597f45e2
SHA512

ae1d7b100b672b6d9c8d8300f3f0f2bea18ffed906e5e32c8e4a1153882db5f608df4968b97adb51bb640cac99a9a45ec568165ee65b66e9a484d1ec31c0b1ed
SSDEEP

24576:pxV3FBWplXf+JgPZX5OW2o+6GjrfwfWzHuOC:ptBWjNRs2+7zOO

Score

N/A

Malware Config

Signatures

Files

bf6e6082a7d4f36fa719f2c0b61d829d5d769c667038989f07fe48f8597f45e2
.exe windows x86

8f59029ad6dd5587b2a3b4a32dd35e4e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

OpenMutexA
SetCurrentDirectoryW
CreateEventA
GetLogicalDriveStringsW
lstrcpyW
GetStdHandle
GetModuleHandleW
GetLogicalDrives
GetStringTypeA
GetLogicalDrives
GetLogicalDrives
GetFileAttributesA
VirtualProtectEx
GetLogicalDrives
GetTickCount
GetModuleHandleA

riched20

IID_ITextHost
IID_IRichEditOle
RichEditANSIWndProc
RichEdit10ANSIWndProc

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.vdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.kdata
Size: 800KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy