ca84c4c7a6b5a25dec2e33b6b595c617c82870985991c79f1d3a74cda2decbc8 | Triage

Submit
Reports

Overview

overview

8

Static

static

ca84c4c7a6...c8.exe

windows7-x64

8

ca84c4c7a6...c8.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

ca84c4c7a6b5a25dec2e33b6b595c617c82870985991c79f1d3a74cda2decbc8.exe

Resource

win7-20220812-en

persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

ca84c4c7a6b5a25dec2e33b6b595c617c82870985991c79f1d3a74cda2decbc8.exe

Resource

win10v2004-20220901-en

persistence spyware stealer upx

windows10-2004-x64

4 signatures

150 seconds

General

Target

ca84c4c7a6b5a25dec2e33b6b595c617c82870985991c79f1d3a74cda2decbc8
Size

177KB
MD5

0e83e994a3925eda87f2bf59abe87870
SHA1

6f8e026b9fcf8930b5787e5cb4571d57218b9c5a
SHA256

ca84c4c7a6b5a25dec2e33b6b595c617c82870985991c79f1d3a74cda2decbc8
SHA512

912608b98197764ec48b3c6fad74a970d5fbf8b61d64974c7927d45fb543c246d2548c2e526742381b6a092d93460a9a57a3a27052e359f7b146619171e17b14
SSDEEP

3072:nfXjJ4z1z7nLw4gEgDwfwbrW8a1ld7mJeCpbNoO4xk4eQGRwkAPyunUjiaswKB+8:fXm7ns4gE7fwHXU7mECNNoO4xVrG6kWl

Score

N/A

Malware Config

Signatures

Files

ca84c4c7a6b5a25dec2e33b6b595c617c82870985991c79f1d3a74cda2decbc8
.exe windows x86

59603079933551de53ea5d41708767bf

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FlushInstructionCache
TlsAlloc
IsBadWritePtr
GetCommandLineA
VirtualFree
TerminateProcess
SetLastError
VirtualQuery
HeapCreate
HeapDestroy
ExitProcess
RtlUnwind
VirtualAlloc
SetLocaleInfoW
GetProcAddress
SetUnhandledExceptionFilter
GetSystemInfo
ExitProcess
HeapReAlloc
VirtualProtect

rpcrt4

I_RpcFreeBuffer
UuidCreate

shlwapi

PathFindExtensionA

ole32

CoTaskMemFree
CoTaskMemAlloc
CoCreateInstance
StringFromGUID2
CoTaskMemRealloc

user32

IsDlgButtonChecked
ShowWindow
GetDialogBaseUnits
UnregisterClassA
GetDlgItem
EnableWindow
SetDlgItemTextA
ReleaseDC
IsDialogMessageA
DestroyWindow
CheckDlgButton
SetWindowLongA
CreateDialogParamA
GetDlgItemTextA
WinHelpA
IsWindow
SendMessageA
MoveWindow
GetDC
CharNextA

Sections

.text
Size: 106KB - Virtual size: 106KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy