814acff32b61c958e3874ac5f786b8ab2121bfbad1ce75cdd45ba3eea16cbb80 | Triage

Submit
Reports

Overview

overview

8

Static

static

814acff32b...80.exe

windows7-x64

8

814acff32b...80.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

814acff32b61c958e3874ac5f786b8ab2121bfbad1ce75cdd45ba3eea16cbb80.exe

Resource

win7-20220812-en

discovery persistence spyware stealer upx

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

814acff32b61c958e3874ac5f786b8ab2121bfbad1ce75cdd45ba3eea16cbb80.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

814acff32b61c958e3874ac5f786b8ab2121bfbad1ce75cdd45ba3eea16cbb80
Size

782KB
MD5

1b38f09c65ac7e275f82f782cc58c191
SHA1

9f68b0587725f75b1c502799037a03affab46b99
SHA256

814acff32b61c958e3874ac5f786b8ab2121bfbad1ce75cdd45ba3eea16cbb80
SHA512

bd24265cd8081b88f690606e4707d4f26342587f6f3001fd4e871da74b8862868a408f962ea65a7d474b72a413daa6ff5beae75b79893a0acfd03f616a678237
SSDEEP

12288:HBplIahCJFdmPGgGKUxT+P2nkbGxNv9UqzCTTb04TfCRoTRgx4H0ET+Bw8F/Y7A:H3SKcFdmqfILSPxE0aKR3x4UtBY7S

Score

N/A

Malware Config

Signatures

Files

814acff32b61c958e3874ac5f786b8ab2121bfbad1ce75cdd45ba3eea16cbb80
.exe windows x86

9d5443b9731dca8abd34c436ca6c5fc1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryW
lstrcatA
CreateFileA
HeapCreate
GetModuleHandleA
GetCurrentDirectoryA
LocalUnlock
PulseEvent
SetEvent
lstrlenA
CreateThread
SetLastError
Sleep
GetSystemTime
LocalFree
UnmapViewOfFile
GetComputerNameA
CloseHandle
GetTickCount
GetCommandLineW

user32

CheckRadioButton
DrawEdge
CallWindowProcA
FillRect
SetFocus
GetDlgItem
IsWindow
GetKeyState
GetScrollBarInfo
GetDC
DispatchMessageA
DrawMenuBar
CreateWindowExA

clbcatq

UpdateFromAppChange
DowngradeAPL
CheckMemoryGates
SetSetupOpen
SetupOpen

desk.cpl

InstallScreenSaver

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy