e126825effd0b02dc23d42e2775a30d00e78a57f3ca2e1ebac95d733a85ff163 | Triage

Submit
Reports

Overview

overview

8

Static

static

e126825eff...63.exe

windows7-x64

8

e126825eff...63.exe

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

e126825effd0b02dc23d42e2775a30d00e78a57f3ca2e1ebac95d733a85ff163.exe

Resource

win7-20220812-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

e126825effd0b02dc23d42e2775a30d00e78a57f3ca2e1ebac95d733a85ff163.exe

Resource

win10v2004-20220812-en

discovery persistence spyware stealer upx

windows10-2004-x64

5 signatures

150 seconds

General

Target

e126825effd0b02dc23d42e2775a30d00e78a57f3ca2e1ebac95d733a85ff163
Size

817KB
MD5

081cf88e8d8525cceacf2a53c4bc73d0
SHA1

b692f9a9091462bfd5460161bb1e49cecdfcaa53
SHA256

e126825effd0b02dc23d42e2775a30d00e78a57f3ca2e1ebac95d733a85ff163
SHA512

70bac6cce2797de5c131f9d0c93c88558bb05adfc97106fc95d34d693b879febd891c1de126d09555470fc15333ffe85602082c3d56453e007736f32a85412a2
SSDEEP

24576:LtlybcWOIivsnJ3vUo9p+TOE92m2lHZedM0S/:plcJ1JfUApAOE9PdR

Score

N/A

Malware Config

Signatures

Files

e126825effd0b02dc23d42e2775a30d00e78a57f3ca2e1ebac95d733a85ff163
.exe windows x86

2d44f5cf19e2c112ba30c7cc3e8fa380

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcess
GetTimeFormatA
FormatMessageW
GetFileTime
LeaveCriticalSection
GetStringTypeA
GetPrivateProfileIntW
GetSystemTime
GetFullPathNameW
Heap32First
GetDiskFreeSpaceW
GetModuleHandleA
RemoveDirectoryA
SetCurrentDirectoryA
lstrcatA
VirtualAlloc
LeaveCriticalSection
FindNextVolumeA
InterlockedExchange

certcli

CADeleteCA
CAEnumNextCA
CAEnumFirstCA
CADeleteCertType

Sections

.code
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.PDATA
Size: 805KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy