83a4ffb26c80571a9313ad754fe8c1e89305d8b928186dbfe619b58fba96ced7 | Triage

Submit
Reports

Overview

overview

8

Static

static

83a4ffb26c...d7.exe

windows7-x64

8

83a4ffb26c...d7.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

83a4ffb26c80571a9313ad754fe8c1e89305d8b928186dbfe619b58fba96ced7.exe

Resource

win7-20220812-en

discovery persistence spyware stealer upx

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

83a4ffb26c80571a9313ad754fe8c1e89305d8b928186dbfe619b58fba96ced7.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

83a4ffb26c80571a9313ad754fe8c1e89305d8b928186dbfe619b58fba96ced7
Size

811KB
MD5

0a35015891efca9b6f46ec4e161bbb54
SHA1

28a60df13c5191555695f4e5eb4b9dc815f03b0f
SHA256

83a4ffb26c80571a9313ad754fe8c1e89305d8b928186dbfe619b58fba96ced7
SHA512

cf0ce81c61d1aa82c39e0e0165458ca804ba2fbdb429ae5dd64cea8af0987b45db7dcb4e93588b72645eeb04d6df5d2f7abcb7e74f7520571062edf89e694a13
SSDEEP

24576:uoIW2OTOZHoqziFLzQwQUDHazUbxFlg6XsKS+m:ra8Yj2zla4bxO/

Score

N/A

Malware Config

Signatures

Files

83a4ffb26c80571a9313ad754fe8c1e89305d8b928186dbfe619b58fba96ced7
.exe windows x86

98a8c4dabdb0e880e927f83fe5d80a16

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalFree
GetFileAttributesA
CreateFileMappingW
MapViewOfFile
GetStdHandle
FindClose
GetPrivateProfileIntA
lstrlenW
TlsAlloc
TlsGetValue
GetTickCount
GetComputerNameA
VirtualAlloc
GetModuleHandleW
ExitProcess
FindAtomA
GetLastError
GetLocalTime
SetLastError
CloseHandle

user32

DispatchMessageA
EndDialog
DrawStateA
FillRect
GetDlgItem
GetClientRect
DestroyCaret
CloseWindow
GetMenu
GetCaretPos
CreateWindowExA
CallWindowProcA
GetClassInfoA

clbcatq

DllGetClassObject
CheckMemoryGates
SetSetupSave
ComPlusMigrate
SetupOpen

ir50_32

DllGetClassObject

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 801KB - Virtual size: 801KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy