9fa4ff2da24210399a49bd8255ce9d06a66f01a4e700a8cb2fe3e1dae8ff3001 | Triage

Submit
Reports

Overview

overview

Static

static

9fa4ff2da2...01.exe

windows7-x64

9fa4ff2da2...01.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

9fa4ff2da24210399a49bd8255ce9d06a66f01a4e700a8cb2fe3e1dae8ff3001.exe

Resource

win7-20220812-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

9fa4ff2da24210399a49bd8255ce9d06a66f01a4e700a8cb2fe3e1dae8ff3001.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

9fa4ff2da24210399a49bd8255ce9d06a66f01a4e700a8cb2fe3e1dae8ff3001
Size

128KB
MD5

58199c6c70c6613a0f61f9cdf2b8eb20
SHA1

22de0863c853b94e33c1a1eb5f587070761b26ec
SHA256

9fa4ff2da24210399a49bd8255ce9d06a66f01a4e700a8cb2fe3e1dae8ff3001
SHA512

315cddd4e04ad24e862aa67a05e91a71e795bf55edd347cfcb80e91b7e56accc5b5f66053b9988a65f5b530de0efa7cc317f09188634a4f0592a074fd44d87af
SSDEEP

3072:ZRzm86DT5Ek3Nq+sFAuzMeXtIngXYoXdHR:LzmrDT6+N0FrfXtVXZx

Score

N/A

Malware Config

Signatures

Files

9fa4ff2da24210399a49bd8255ce9d06a66f01a4e700a8cb2fe3e1dae8ff3001
.exe windows x86

7a76580ff40387ef76aec59cae22e2cb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GlobalLock
SetLastError
GetModuleHandleA
GetCurrentProcess
GetStringTypeA
GetPrivateProfileSectionA
DeviceIoControl
GetPrivateProfileIntA
GetVersionExA
LocalFlags
HeapFree
CreateDirectoryW
CreateEventA
GetFileAttributesW
VirtualProtectEx
RemoveDirectoryW
GetCurrentThread
SetCommBreak
FindClose
GetFileAttributesW
CloseHandle

user32

IsZoomed
SetCursorPos
DispatchMessageA
IsDialogMessageA
IsWindow
GetWindowLongW
LoadCursorW
PostMessageW
PeekMessageW
CloseDesktop
wsprintfW
SetFocus
GetWindowTextW

mswsock

GetServiceA
getnetbyname
GetNameByTypeA
GetAddressByNameA

ntshrui

IsPathSharedA

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 121KB - Virtual size: 121KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.import
Size: 512B - Virtual size: 384B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy