eafb01bc3776f8f397af97469ea1333e182a6593f86875b4c100b4ca2417ce53 | Triage

Submit
Reports

Overview

overview

8

Static

static

eafb01bc37...53.exe

windows7-x64

8

eafb01bc37...53.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

eafb01bc3776f8f397af97469ea1333e182a6593f86875b4c100b4ca2417ce53.exe

Resource

win7-20220901-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

eafb01bc3776f8f397af97469ea1333e182a6593f86875b4c100b4ca2417ce53.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

eafb01bc3776f8f397af97469ea1333e182a6593f86875b4c100b4ca2417ce53
Size

811KB
MD5

11491669df30f5d838b29a5b5c6da9fd
SHA1

52cd13db74b5a8acb0d0b94de529174faaaad5f2
SHA256

eafb01bc3776f8f397af97469ea1333e182a6593f86875b4c100b4ca2417ce53
SHA512

7be251466b527f2643b1a9796bdf2b965440a1374401f7c68260d62bb6a7fd843138ed42a392fa7894d77812278a4f30def6e145a8cf0835664042e170f6b07f
SSDEEP

12288:U+kiLNRgGWLhDX/wAwbAWvrVbda+TzPtmHaJ07vBFeKq4uuuxsh0l:jjrWV8AwkQra+PP4HI07Ju9sh0l

Score

N/A

Malware Config

Signatures

Files

eafb01bc3776f8f397af97469ea1333e182a6593f86875b4c100b4ca2417ce53
.exe windows x86

c114b5581f02c83f58c56bedf0cd8677

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStartupInfoA
GetConsoleMode
GetDriveTypeA
EnterCriticalSection
lstrlenW
TlsGetValue
CreateFileA
DeleteFileA
LeaveCriticalSection
Sleep
GetModuleFileNameA
CreateDirectoryW
GetCalendarInfoA
GetTickCount
FindClose
GetConsoleTitleW
GetFileSize
VirtualProtectEx
GetModuleHandleA
GetCommandLineW
InitializeCriticalSection
GlobalFree
WriteConsoleW
CloseHandle
RemoveDirectoryA

user32

MessageBoxA
DispatchMessageA
GetWindowDC
IsWindowVisible
FillRect
IsWindowEnabled
GetWindowLongA
wsprintfA
GetSysColor
IsWindow
EqualRect
GetWindowLongA
PeekMessageA

cryptdlg

CertTrustCleanup
CertTrustInit
CertConfigureTrustA
CertTrustCertPolicy

advapi32

RegCloseKey

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 800KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy