f8fda43e409dc5397dac1cdebd109fa615838cf5d1ad0ff3482920ce94b73727 | Triage

Submit
Reports

Overview

overview

8

Static

static

f8fda43e40...27.exe

windows7-x64

8

f8fda43e40...27.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

f8fda43e409dc5397dac1cdebd109fa615838cf5d1ad0ff3482920ce94b73727.exe

Resource

win7-20220812-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

f8fda43e409dc5397dac1cdebd109fa615838cf5d1ad0ff3482920ce94b73727.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

f8fda43e409dc5397dac1cdebd109fa615838cf5d1ad0ff3482920ce94b73727
Size

809KB
MD5

021ce9240f387065a8e18b6c48099720
SHA1

559f1d5608130042f595cdafb34cbef790925e62
SHA256

f8fda43e409dc5397dac1cdebd109fa615838cf5d1ad0ff3482920ce94b73727
SHA512

6cdbe8b1d8824ed4da352ac27c8009d670f652ddbd6667da02c371d4ea91ed39609d2dd674050a3a4ac7333c31ada782008e141f8ae06f7510eeea460f2e08f8
SSDEEP

24576:CT7r8jsgwo3ex/0yRqxgbiGXIVdgQ//y:CTG3wouHqxoiGXIj/y

Score

N/A

Malware Config

Signatures

Files

f8fda43e409dc5397dac1cdebd109fa615838cf5d1ad0ff3482920ce94b73727
.exe windows x86

376db846b1c4c58375074c654e1144d4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpyA
VirtualProtectEx
GetLastError
GetLastError
GetLastError
GetModuleHandleA
GetLastError
GetLastError
MoveFileW
GetFileType
CreateSemaphoreA
GetModuleHandleW
GetCurrentDirectoryW
GetLastError
GetLastError
GetConsoleTitleW
GetVolumeInformationW

odbctrac

TraceSQLConnect
TraceVersion
TraceSQLCancel
TraceReturn

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.odata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.Data
Size: 801KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy