4aeee1f3aa5df9077ddd931317fc79ede9b7708f783c3aab9872b22afbef5db7 | Triage

Submit
Reports

Overview

overview

8

Static

static

4aeee1f3aa...b7.exe

windows7-x64

8

4aeee1f3aa...b7.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

4aeee1f3aa5df9077ddd931317fc79ede9b7708f783c3aab9872b22afbef5db7.exe

Resource

win7-20220812-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

4aeee1f3aa5df9077ddd931317fc79ede9b7708f783c3aab9872b22afbef5db7.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

4aeee1f3aa5df9077ddd931317fc79ede9b7708f783c3aab9872b22afbef5db7
Size

812KB
MD5

01d4472a4842099eaa20e0c913b5c735
SHA1

552ef6d007482dd7324f7afa4d2032cb38e46591
SHA256

4aeee1f3aa5df9077ddd931317fc79ede9b7708f783c3aab9872b22afbef5db7
SHA512

9f21535e4c974815a89b1603b334d379d520d1a58a6d4b1fb86f1e3e317c1ef18acabe3911966880c88994bd354eea4b682d2c8fd3f992be6fd5636a01e84a57
SSDEEP

24576:jYbKqk569U7gljeZqBT1PXXiDYG72iAZ:jEKjsHTBVXEYG72i

Score

N/A

Malware Config

Signatures

Files

4aeee1f3aa5df9077ddd931317fc79ede9b7708f783c3aab9872b22afbef5db7
.exe windows x86

534ce327c85c136468751af017e42612

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
GetStartupInfoA
GetFileSize
lstrlenA
WriteConsoleA
GetFileAttributesW
SetLastError
VirtualProtect
GetTickCount
SetLastError
CreateFileA
CreateDirectoryA
LoadLibraryA
GetEnvironmentStringsW
OpenSemaphoreA
GetProcessHeap
ReadConsoleW
GlobalFree
HeapSize
OpenMutexA
DeleteFileA
CreateDirectoryW
Sleep
SetEvent
GetModuleFileNameA

user32

IsZoomed
DispatchMessageA
DrawTextW
CallWindowProcW
PeekMessageA
DispatchMessageA
FindWindowA
GetSysColor
DestroyMenu
GetClassInfoA
SetFocus
IsWindow
GetWindowLongA

xolehlp

DtcGetTransactionManager
DtcGetTransactionManagerC
GetDtcLocaleResourceHandle
DtcGetTransactionManagerEx

advapi32

RegCloseKey

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 800KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy