e75fff9a1a478529f53514a29807f57cab6bb00843897ae8abc05a62a3e364cc | Triage

Submit
Reports

Overview

overview

8

Static

static

e75fff9a1a...cc.exe

windows7-x64

8

e75fff9a1a...cc.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

e75fff9a1a478529f53514a29807f57cab6bb00843897ae8abc05a62a3e364cc.exe

Resource

win7-20220812-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

e75fff9a1a478529f53514a29807f57cab6bb00843897ae8abc05a62a3e364cc.exe

Resource

win10v2004-20220812-en

discovery persistence spyware stealer upx

windows10-2004-x64

4 signatures

150 seconds

General

Target

e75fff9a1a478529f53514a29807f57cab6bb00843897ae8abc05a62a3e364cc
Size

811KB
MD5

0e63d73e0fc2f6289720cd2591bada7a
SHA1

f9430fa454792215beddfc2654925f6e6a5a43b8
SHA256

e75fff9a1a478529f53514a29807f57cab6bb00843897ae8abc05a62a3e364cc
SHA512

b68dbe8f8c9d6a16965d9e2a75751391c3ed60b67072d67128161f89fb5cc7cc55eeab2da4835f221e9765877180820f387eb3e485cf586d056cc65961136bef
SSDEEP

24576:axTu8xV9K48SUXXCEmRqPb8t/9Uj2PdXaFtQ5bhzOzR05ylAW:axTuo9RUXXCEWJN9A8gQTzOze

Score

N/A

Malware Config

Signatures

Files

e75fff9a1a478529f53514a29807f57cab6bb00843897ae8abc05a62a3e364cc
.exe windows x86

beec4baa4c561b1b3efb245bfe62de5c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
GlobalFree
DeleteFileA
OpenSemaphoreA
CreateDirectoryA
SetLastError
SetLastError
OpenMutexA
ReadConsoleW
GetFileSize
GetModuleFileNameA
GetStartupInfoA
WriteConsoleA
GetEnvironmentStringsW
GetTickCount
SetEvent
LoadLibraryA
GetProcessHeap
Sleep
HeapSize
GetFileAttributesW
CreateDirectoryW
VirtualProtect
lstrlenA
CloseHandle

user32

GetWindowLongA
SetFocus
GetClassInfoA
DestroyMenu
IsWindow
IsZoomed
CallWindowProcW
DispatchMessageA
DrawTextW
GetSysColor
DispatchMessageA
PeekMessageA
FindWindowA

xolehlp

GetDtcLocaleResourceHandle
DtcGetTransactionManagerC
DtcGetTransactionManagerEx
DtcGetTransactionManager

advapi32

RegCloseKey

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 800KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy