afc70f4bf57c3763b5749d78133cc9e61ab5b3e7b1c4b3ff45c4f3924dbe5c12 | Triage

Submit
Reports

Overview

overview

8

Static

static

afc70f4bf5...12.exe

windows7-x64

8

afc70f4bf5...12.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

afc70f4bf57c3763b5749d78133cc9e61ab5b3e7b1c4b3ff45c4f3924dbe5c12.exe

Resource

win7-20220812-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

afc70f4bf57c3763b5749d78133cc9e61ab5b3e7b1c4b3ff45c4f3924dbe5c12.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

afc70f4bf57c3763b5749d78133cc9e61ab5b3e7b1c4b3ff45c4f3924dbe5c12
Size

776KB
MD5

083c2de30ea4b909dd91d906d23215d3
SHA1

dd08c08106b802c83d0860351e2c6004dbc53d39
SHA256

afc70f4bf57c3763b5749d78133cc9e61ab5b3e7b1c4b3ff45c4f3924dbe5c12
SHA512

1963cb5ac13344039cdbfe3c649ef4bb6993bab46b18f74ebb01adf13443852c85072296c7f3386d22450d620843bf460a08fb0220d3c6c7b27a6197ef790885
SSDEEP

12288:yf22RLvAIPtqTF/Y2FL2H1DnGjQBuX8MohlrJGi2vTuWwMVdzJeto5spSwQ:yzLAIEFtiH1DnHuX8MulwFEto5OSwQ

Score

N/A

Malware Config

Signatures

Files

afc70f4bf57c3763b5749d78133cc9e61ab5b3e7b1c4b3ff45c4f3924dbe5c12
.exe windows x86

655decbaab7b52bcde5fc29f6392a22e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetPriorityClass
IsBadCodePtr
WriteConsoleW
CopyFileW
CloseHandle
IsBadStringPtrA
GetLastError
WriteConsoleW
IsValidLocale
WriteConsoleW
GetModuleHandleA
SetEvent
lstrlenW
HeapCreate
lstrcpyW
GetStartupInfoA
GetCurrentDirectoryA
ReleaseMutex
CreatePipe
GetFileAttributesA
DisconnectNamedPipe

msftedit

SetCustomTextOutHandlerEx
RichComboBoxWndProc
RichEditWndProc
RichListBoxWndProc

shell32

DragAcceptFiles
ExtractIconA
SHGetMalloc
SHGetMalloc
StrChrA
SHGetDiskFreeSpaceA
DragQueryFileA
ShellMessageBoxA
ShellAboutA
SHGetSettings
DuplicateIcon
SHGetDiskFreeSpaceA
ShellMessageBoxA

msasn1

ASN1BERDecBool

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 592B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 766KB - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.orpc
Size: 512B - Virtual size: 81B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy