c2d8c328123fb7ebae88325b114d13ec16b9ece84c1bfe01a8c58b2aaf6b95d5 | Triage

Submit
Reports

Overview

overview

Static

static

c2d8c32812...d5.exe

windows7-x64

c2d8c32812...d5.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

c2d8c328123fb7ebae88325b114d13ec16b9ece84c1bfe01a8c58b2aaf6b95d5.exe

Resource

win7-20220901-en

pony collection discovery persistence rat spyware stealer

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

c2d8c328123fb7ebae88325b114d13ec16b9ece84c1bfe01a8c58b2aaf6b95d5.exe

Resource

win10v2004-20220812-en

pony collection discovery rat spyware stealer

windows10-2004-x64

10 signatures

150 seconds

General

Target

c2d8c328123fb7ebae88325b114d13ec16b9ece84c1bfe01a8c58b2aaf6b95d5
Size

179KB
MD5

07ee0bb7ee470e79f02dcf03bb0d8b4d
SHA1

dc9451e3f5395e9690f4989b323ba3f0bdcc307c
SHA256

c2d8c328123fb7ebae88325b114d13ec16b9ece84c1bfe01a8c58b2aaf6b95d5
SHA512

1f2ebef6426387739a3d19504deeac12bd04b7ff7d15ef944c00df9a612d43fcbd150f99883816a06d5462b36b0766f5dd47b472ab10b414991199b612217f69
SSDEEP

3072:+fzJFJp7A+c+xvA5rZ1GveOT59SBeFDkSHSbYLW2Kda6sG2Ynwpt0ToJ56JcA2v:w1M+cqvA5rZ1GvJ9SeFY8LWPda6J2Ywr

Score

N/A

Malware Config

Signatures

Files

c2d8c328123fb7ebae88325b114d13ec16b9ece84c1bfe01a8c58b2aaf6b95d5
.exe windows x86

c3cef3a78c3a764ce6c9476bfc3371e8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

memset
memmove
wcscmp
floor
ceil
localtime
mktime
memcpy
wcslen

kernel32

GetModuleHandleW
HeapCreate
HeapDestroy
ExitProcess
CloseHandle
InitializeCriticalSection
GetModuleFileNameW
HeapFree
HeapAlloc
HeapSize
FreeLibrary
LoadLibraryW
WideCharToMultiByte
GetProcAddress
FindFirstFileW
FileTimeToLocalFileTime
FileTimeToSystemTime
FindClose
GetLocalTime
WriteFile
CreateFileW
GetFileSize
SetFilePointer
ReadFile
HeapReAlloc

user32

GetSystemMetrics

ntdll

NtUnmapViewOfSection

Sections

.code
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 48B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.p3kt
Size: 160KB - Virtual size: 164KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy