85d4ea6e7792eaa636545a6e51805393975f9b90756b3d8d720f48187b2e1b54 | Triage

Submit
Reports

Overview

overview

8

Static

static

85d4ea6e77...54.exe

windows7-x64

8

85d4ea6e77...54.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

85d4ea6e7792eaa636545a6e51805393975f9b90756b3d8d720f48187b2e1b54.exe

Resource

win7-20220812-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

85d4ea6e7792eaa636545a6e51805393975f9b90756b3d8d720f48187b2e1b54.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

85d4ea6e7792eaa636545a6e51805393975f9b90756b3d8d720f48187b2e1b54
Size

775KB
MD5

1082d7fc669461559f5954de15752846
SHA1

9374af2940134c26e4f2d85c48e8a81c4e21c78b
SHA256

85d4ea6e7792eaa636545a6e51805393975f9b90756b3d8d720f48187b2e1b54
SHA512

33c02721c03fcda351ce94748cf716326158487f7dbc8a715e51e102ce24e2946e9d80d5936ecfe5ddec0d4b30032a57adfde5fc43177c348c4b6ba102cb7efb
SSDEEP

12288:DHazSkPt1EcI2po2ks63dN5In3e/UtLvYhN5oOfi/wQZHlkTewlQ:DHazSS1Ef5s61In3Ehh6Hvw

Score

N/A

Malware Config

Signatures

Files

85d4ea6e7792eaa636545a6e51805393975f9b90756b3d8d720f48187b2e1b54
.exe windows x86

7b5bf0a77dc1cd36d8e6fc6cef1a76af

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

DisconnectNamedPipe
GetFileAttributesA
WriteConsoleW
GetLastError
GetPriorityClass
GetStartupInfoA
WriteConsoleW
CopyFileW
GetModuleHandleA
CloseHandle
CreatePipe
WriteConsoleW
GetCurrentDirectoryA
SetEvent
IsDebuggerPresent
lstrlenW
ClearCommBreak
lstrcpyW
HeapCreate
GetStdHandle
ReleaseMutex

msftedit

SetCustomTextOutHandlerEx
RichComboBoxWndProc
RichListBoxWndProc
RichEditWndProc

shell32

SHGetSettings
ExtractIconA
SHGetMalloc
SHGetDiskFreeSpaceA
ShellMessageBoxA
SHGetDiskFreeSpaceA
StrChrA
DuplicateIcon
ShellMessageBoxA
ShellAboutA
DragQueryFileA
SHGetMalloc
DragAcceptFiles

msasn1

ASN1BERDecBool

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 592B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 766KB - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.orpc
Size: 512B - Virtual size: 115B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy