04051a9a091bae473534e41df1400042926d68ee688ad516cbcb4d25dffcd3b3 | Triage

Submit
Reports

Overview

overview

8

Static

static

04051a9a09...b3.exe

windows7-x64

8

04051a9a09...b3.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

04051a9a091bae473534e41df1400042926d68ee688ad516cbcb4d25dffcd3b3.exe

Resource

win7-20220901-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

04051a9a091bae473534e41df1400042926d68ee688ad516cbcb4d25dffcd3b3.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

04051a9a091bae473534e41df1400042926d68ee688ad516cbcb4d25dffcd3b3
Size

830KB
MD5

3e9f03d4101b1a266e852412c1fc8556
SHA1

1e235f7b08668ca431f9eb48476c135ba7aa7327
SHA256

04051a9a091bae473534e41df1400042926d68ee688ad516cbcb4d25dffcd3b3
SHA512

8f95a17c224c2191ad9e39825444a83c185314d73572ac4a4defba87f425baf6d4d3fb5c0e5a12d0fb3175a29800b641e144c372c6e74cf9f5bc6f8b5fc479b5
SSDEEP

24576:lzaxQgvQit6pFu+BVTVposGgActrFPPUSEGA7hYpK:lw3epBVTVygAcr8SEGAdb

Score

N/A

Malware Config

Signatures

Files

04051a9a091bae473534e41df1400042926d68ee688ad516cbcb4d25dffcd3b3
.exe windows x86

6761361570f6ed55d3dc1470c7b7e76c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
MoveFileExA
GetLocaleInfoA
GetConsoleTitleA
GetCurrentThread
CreateSemaphoreW
WaitForSingleObject
HeapCreate
FindNextFileW
GetCommandLineA
EnumResourceNamesA
SetEvent
LeaveCriticalSection
GetDiskFreeSpaceA
GetTickCount
CompareStringA
EnumCalendarInfoA

drmv2clt

CreateDRMRightsManager
MakeEscapedURL
DllUnregisterServer
LaunchURL

Sections

.text1
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.edata
Size: 814KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy