ac9f94a7bbcf3085452ea6c828d527ef96bb493a452d4a7b1689752d606d9355 | Triage

Submit
Reports

Overview

overview

8

Static

static

ac9f94a7bb...55.exe

windows7-x64

8

ac9f94a7bb...55.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

ac9f94a7bbcf3085452ea6c828d527ef96bb493a452d4a7b1689752d606d9355.exe

Resource

win7-20220901-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

ac9f94a7bbcf3085452ea6c828d527ef96bb493a452d4a7b1689752d606d9355.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

ac9f94a7bbcf3085452ea6c828d527ef96bb493a452d4a7b1689752d606d9355
Size

776KB
MD5

0d0692db00929a76d064018469e244f0
SHA1

975373a14a5423cf48938dd89f311bd032d5587a
SHA256

ac9f94a7bbcf3085452ea6c828d527ef96bb493a452d4a7b1689752d606d9355
SHA512

37991875c2470b4485d6e74ae16f885e250901f32ac17e928427cd71ad6dae0eb7f92cb03aca3b1a00d23b83df24266427df4b358e025d925ef9ddf5c60fc75d
SSDEEP

24576:qt/kS7xJp89dSsLtnrAJZUFa99Z29PjV2ct:UvxJi9dPEJZUFajUVV

Score

N/A

Malware Config

Signatures

Files

ac9f94a7bbcf3085452ea6c828d527ef96bb493a452d4a7b1689752d606d9355
.exe windows x86

d1ed974081b523fca6118f41ac4bfbd9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

SetEvent
CreatePipe
HeapCreate
lstrcpyW
GetCurrentDirectoryA
GetPriorityClass
IsBadCodePtr
WriteConsoleW
GetModuleHandleA
ReleaseMutex
GetFileAttributesA
GetStartupInfoA
GetLastError
lstrlenW
CloseHandle
IsBadStringPtrA
IsValidLocale
WriteConsoleW
CopyFileW
WriteConsoleW
DisconnectNamedPipe

msftedit

RichEditWndProc
RichComboBoxWndProc
RichListBoxWndProc
SetCustomTextOutHandlerEx

shell32

ExtractIconA
SHGetMalloc
SHGetDiskFreeSpaceA
SHGetDiskFreeSpaceA
DragAcceptFiles
StrChrA
ShellMessageBoxA
DragQueryFileA
DuplicateIcon
SHGetMalloc
ShellAboutA
SHGetSettings
ShellMessageBoxA

msasn1

ASN1BERDecBool

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 592B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 766KB - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.orpc
Size: 512B - Virtual size: 81B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy