9604189adaa5bd8e190fcc9d3a3ee4e14bfe2c54e7837ca2224e7ebd33582da9 | Triage

Submit
Reports

Overview

overview

Static

static

9604189ada...a9.exe

windows7-x64

9604189ada...a9.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

9604189adaa5bd8e190fcc9d3a3ee4e14bfe2c54e7837ca2224e7ebd33582da9.exe

Resource

win7-20220812-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

9604189adaa5bd8e190fcc9d3a3ee4e14bfe2c54e7837ca2224e7ebd33582da9.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

9604189adaa5bd8e190fcc9d3a3ee4e14bfe2c54e7837ca2224e7ebd33582da9
Size

128KB
MD5

2d34f2bf3aa0eeb7b56f489346bfc8ea
SHA1

47938133a69869a2a982c8bf519eb80f0c30ed99
SHA256

9604189adaa5bd8e190fcc9d3a3ee4e14bfe2c54e7837ca2224e7ebd33582da9
SHA512

78b90d8c15950219272a34facc63178c828dd04547b3937f2e9e7d9af8270bbdff9e2a13f96f4703a30a4dc6cf5005c605e5f309871869475d16ae0b71a11d7d
SSDEEP

1536:lyldm1B99umY0AmEAhSgQdUstfXnSwBsWUrJAC6X2d8tB1L0obBsVvnLU:IlCB99LdAihSgQdDfCaIITfZ0iUvno

Score

N/A

Malware Config

Signatures

Files

9604189adaa5bd8e190fcc9d3a3ee4e14bfe2c54e7837ca2224e7ebd33582da9
.exe windows x86

4d7b2370524ebfc5910e247a1f0aaac3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

HeapDestroy
VirtualProtectEx
DeviceIoControl
lstrlenA
OpenMutexA
LoadLibraryA
CreateEventW
DeleteFileA
GetStringTypeA
CloseHandle
GetPrivateProfileIntW
LocalLock
HeapFree
DeviceIoControl
GetDriveTypeA
GetCurrentProcess
GetPrivateProfileSectionA
GetCurrentThread
FindVolumeClose
GetStdHandle
GetFileAttributesA

uxtheme

CloseThemeData
GetThemeColor
SetWindowTheme
GetThemeTextMetrics
GetThemeBool
GetThemeSysSize
CloseThemeData
IsThemeActive
GetThemeTextExtent
DrawThemeBackground
OpenThemeData
DrawThemeEdge
GetWindowTheme

odbccp32

SQLConfigDataSource
SQLInstallODBC
SQLInstallDriver
SQLGetAvailableDrivers

msasn1

ASN1BERDecBool

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 508B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 117KB - Virtual size: 117KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.orpc
Size: 512B - Virtual size: 348B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy