3e45eb535c3b6dc1a226461ace71c7e7618d858e9eec356c62fdf7c39d40cd28 | Triage

Submit
Reports

Overview

overview

8

Static

static

3e45eb535c...28.exe

windows7-x64

8

3e45eb535c...28.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

3e45eb535c3b6dc1a226461ace71c7e7618d858e9eec356c62fdf7c39d40cd28.exe

Resource

win7-20220812-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

3e45eb535c3b6dc1a226461ace71c7e7618d858e9eec356c62fdf7c39d40cd28.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

3e45eb535c3b6dc1a226461ace71c7e7618d858e9eec356c62fdf7c39d40cd28
Size

879KB
MD5

3017eba2fafd70b3246f8389a2ec11f0
SHA1

7f1b9be40124fe749302aa29d7f3a8fdd1d7a724
SHA256

3e45eb535c3b6dc1a226461ace71c7e7618d858e9eec356c62fdf7c39d40cd28
SHA512

2badeb7b8849cb77274fc65944fc40b5fd22dea9273e6772f571bf0eefb4e997cbd6730a601bc668cafffbce1fc490e21f3ddcf369c600520f099ba77694de5e
SSDEEP

24576:ENuw96qpABTMgFjBgEmvO6CqMqj+1ZnARXud:ENl9tK1MotmvObzAJ0

Score

N/A

Malware Config

Signatures

Files

3e45eb535c3b6dc1a226461ace71c7e7618d858e9eec356c62fdf7c39d40cd28
.exe windows x86

d6f6f16c149cbc9ea56f2e7dd18406bd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

OpenEventA
GetModuleFileNameA
SetEndOfFile
Heap32First
SetEndOfFile
GetStringTypeW
LoadLibraryA
SetEndOfFile
VirtualProtect
SetEndOfFile
CreateEventW
GetFileAttributesA
GetTickCount
GetStdHandle
lstrcatA
SetEndOfFile

wmp

DllUnregisterServer
DllRegisterServer
DllGetClassObject
DllCanUnloadNow

Sections

.text
Size: 7KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.data
Size: 869KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy