f8fda43e409dc5397dac1cdebd109fa615838cf5d1ad0ff3482920ce94b73727 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

f8fda43e40...27.exe

windows7-x64

8

f8fda43e40...27.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

f8fda43e409dc5397dac1cdebd109fa615838cf5d1ad0ff3482920ce94b73727.exe

Resource

win7-20220812-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

f8fda43e409dc5397dac1cdebd109fa615838cf5d1ad0ff3482920ce94b73727.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

f8fda43e409dc5397dac1cdebd109fa615838cf5d1ad0ff3482920ce94b73727
Size

809KB
MD5

021ce9240f387065a8e18b6c48099720
SHA1

559f1d5608130042f595cdafb34cbef790925e62
SHA256

f8fda43e409dc5397dac1cdebd109fa615838cf5d1ad0ff3482920ce94b73727
SHA512

6cdbe8b1d8824ed4da352ac27c8009d670f652ddbd6667da02c371d4ea91ed39609d2dd674050a3a4ac7333c31ada782008e141f8ae06f7510eeea460f2e08f8
SSDEEP

24576:CT7r8jsgwo3ex/0yRqxgbiGXIVdgQ//y:CTG3wouHqxoiGXIj/y

Score

N/A

Malware Config

Signatures

Files

f8fda43e409dc5397dac1cdebd109fa615838cf5d1ad0ff3482920ce94b73727
.exe windows x86

376db846b1c4c58375074c654e1144d4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpyA
VirtualProtectEx
GetLastError
GetLastError
GetLastError
GetModuleHandleA
GetLastError
GetLastError
MoveFileW
GetFileType
CreateSemaphoreA
GetModuleHandleW
GetCurrentDirectoryW
GetLastError
GetLastError
GetConsoleTitleW
GetVolumeInformationW

odbctrac

TraceSQLConnect
TraceVersion
TraceSQLCancel
TraceReturn

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.odata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.Data
Size: 801KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.