426c497712ddc1d5ad8781651afc5b54eb02f81c1c88c4001e0f2efee69c3004 | Triage

Submit
Reports

Overview

overview

8

Static

static

426c497712...04.exe

windows7-x64

8

426c497712...04.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

426c497712ddc1d5ad8781651afc5b54eb02f81c1c88c4001e0f2efee69c3004.exe

Resource

win7-20220812-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

426c497712ddc1d5ad8781651afc5b54eb02f81c1c88c4001e0f2efee69c3004.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

426c497712ddc1d5ad8781651afc5b54eb02f81c1c88c4001e0f2efee69c3004
Size

803KB
MD5

15bd44710a92a07beb8c7f218e04c3c1
SHA1

5b1b738b04242bfce43ac3b2382bc5d4eb3e0a71
SHA256

426c497712ddc1d5ad8781651afc5b54eb02f81c1c88c4001e0f2efee69c3004
SHA512

815092e0b7d28f723d1bfbf7bfd596a933336b438cdb955d79214e8061eec48d60eb9c3385212a6e5e10b36c6633b7bd7e689bf35ec293a27d65fb11539b9640
SSDEEP

24576:45p0viDJGfr6tc+RE8Wi4+dANPYfmLC3:470viDTtJRETxEmLg

Score

N/A

Malware Config

Signatures

Files

426c497712ddc1d5ad8781651afc5b54eb02f81c1c88c4001e0f2efee69c3004
.exe windows x86

931de5c18039a4fd7062a2e5cd61fc0a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetCurrentThread
CreateEventW
DeleteFileA
GetFileAttributesA
DeviceIoControl
DeviceIoControl
GetCurrentProcess
HeapFree
GetPrivateProfileSectionA
FindVolumeClose
GetPrivateProfileIntW
GetDriveTypeA
HeapDestroy
LoadLibraryA
CloseHandle
LocalLock
GetStdHandle
VirtualProtectEx
lstrlenA
GetStringTypeA
OpenMutexA

uxtheme

CloseThemeData
DrawThemeBackground
GetThemeTextExtent
DrawThemeEdge
GetThemeBool
SetWindowTheme
IsThemeActive
CloseThemeData
GetThemeTextMetrics
OpenThemeData
GetThemeSysSize
GetThemeColor
GetWindowTheme

odbccp32

SQLInstallDriver
SQLConfigDataSource
SQLGetAvailableDrivers
SQLInstallODBC

msasn1

ASN1BERDecBool

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1.4MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 794KB - Virtual size: 794KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.orpc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy