9034d60916bd394fc48b63d750df757c68b546b06f262d5e49d69aa1d3e66075 | Triage

Submit
Reports

Overview

overview

8

Static

static

9034d60916...75.exe

windows7-x64

8

9034d60916...75.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

9034d60916bd394fc48b63d750df757c68b546b06f262d5e49d69aa1d3e66075.exe

Resource

win7-20220812-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

9034d60916bd394fc48b63d750df757c68b546b06f262d5e49d69aa1d3e66075.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

9034d60916bd394fc48b63d750df757c68b546b06f262d5e49d69aa1d3e66075
Size

796KB
MD5

065da825321c8d0c9ad402ba03dc9266
SHA1

360522a39fa9f6b47e0914177af730da1e2ad6fe
SHA256

9034d60916bd394fc48b63d750df757c68b546b06f262d5e49d69aa1d3e66075
SHA512

cc325491b6c3d9c72236220e2f0f44b7544eeb60c965957ccc014447f7cc0646336891a63be8e4a1b0427d16ca7a8210ae67942ce3ec2da48a1eee40d0a40a5b
SSDEEP

24576:rPd7XL6HwxVmmqHJe9UEGy8KKJrzuR7w4O5:rPd+3ptdySJmdQ

Score

N/A

Malware Config

Signatures

Files

9034d60916bd394fc48b63d750df757c68b546b06f262d5e49d69aa1d3e66075
.exe windows x86

392187670adb310e6f50e9e4010a3f53

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

DeviceIoControl
CreateEventA
GetCurrentThread
GetPrivateProfileSectionA
CreateDirectoryW
GetCurrentProcess
GetModuleHandleA
CloseHandle
LocalFlags
GetFileAttributesW
GlobalLock
HeapFree
FindClose
SetCommBreak
SetLastError
RemoveDirectoryW
GetStringTypeA
GetVersionExA
VirtualProtectEx
GetFileAttributesW
GetPrivateProfileIntA

user32

LoadCursorW
SetCursorPos
GetWindowTextW
IsDialogMessageA
PostMessageW
IsWindow
CloseDesktop
DispatchMessageA
GetWindowLongW
PeekMessageW
wsprintfW
SetFocus
IsZoomed

mswsock

getnetbyname
GetNameByTypeA
GetAddressByNameA
GetServiceA

ntshrui

IsPathSharedA

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 699KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 789KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.import
Size: 512B - Virtual size: 384B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy