fad496ff2a303a0c827cd7761ef9692cc64d5aa364647ee4629c725623d0aa59 | Triage

Submit
Reports

Overview

overview

8

Static

static

fad496ff2a...59.exe

windows7-x64

8

fad496ff2a...59.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

fad496ff2a303a0c827cd7761ef9692cc64d5aa364647ee4629c725623d0aa59.exe

Resource

win7-20220812-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

fad496ff2a303a0c827cd7761ef9692cc64d5aa364647ee4629c725623d0aa59.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

fad496ff2a303a0c827cd7761ef9692cc64d5aa364647ee4629c725623d0aa59
Size

809KB
MD5

386200010f6ae8857fe104b0dc2c9340
SHA1

9d5e56dabfc7ba07e75f21dc585cdd35e2cd2707
SHA256

fad496ff2a303a0c827cd7761ef9692cc64d5aa364647ee4629c725623d0aa59
SHA512

f8c95534a84b7b586218a3fcb573dfc2fe314df786bca8abb878bba1d48269146d9b95b6797a68c91cfa4c5b3a88ede8be7981a94d3757f1ba8f37b80a325cd8
SSDEEP

24576:f17sOpDQVbGzVLTDSTvG2QFt9Fk2guNCbEj:f1fpDWGlX4Gn1aw

Score

N/A

Malware Config

Signatures

Files

fad496ff2a303a0c827cd7761ef9692cc64d5aa364647ee4629c725623d0aa59
.exe windows x86

def3cb2995c5f41a6819fb38b5bdbc02

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
lstrlenW
GetCurrentDirectoryW
GetConsoleTitleW
GetLastError
GetModuleHandleA
CreateSemaphoreW
GetLastError
CreateMutexW
MoveFileA
GetFileType
GetLastError
GetLastError
GetVolumeInformationW
GetLastError
GetLastError
GetLastError

odbccp32

SQLInstallODBC
SQLGetInstalledDrivers
SQLInstallDriver
SQLGetAvailableDrivers

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.odata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.Data
Size: 801KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy