5e963a4db60520746e8d31a5a49cfafe1193d03e8248fe7bcd1cdca956560e80 | Triage

Submit
Reports

Overview

overview

Static

static

5e963a4db6...80.exe

windows7-x64

5e963a4db6...80.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

5e963a4db60520746e8d31a5a49cfafe1193d03e8248fe7bcd1cdca956560e80.exe

Resource

win7-20220901-en

persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

5e963a4db60520746e8d31a5a49cfafe1193d03e8248fe7bcd1cdca956560e80.exe

Resource

win10v2004-20220812-en

persistence spyware stealer upx

windows10-2004-x64

4 signatures

150 seconds

General

Target

5e963a4db60520746e8d31a5a49cfafe1193d03e8248fe7bcd1cdca956560e80
Size

164KB
MD5

0d32277a52550d5288bb9edb0a1cb550
SHA1

4516606ab75afb6e64e2bbe099b59c10335e28d5
SHA256

5e963a4db60520746e8d31a5a49cfafe1193d03e8248fe7bcd1cdca956560e80
SHA512

894e0070d3139582900926d13903fc772d894bdcd157e569dda207801792b8e46fc854af03a78126d9dd7a5cf48932fe742f5db608c1dd0fc9f3d08c4377c62d
SSDEEP

3072:+S6g5XLXjbGDV6iBilnTxxdakDlwWcElv0Of9gR0UaArcRgpIT31UPxe0Phg:76uXT8V3ilnlfPBNNhKlcqpW1U5e0pg

Score

N/A

Malware Config

Signatures

Files

5e963a4db60520746e8d31a5a49cfafe1193d03e8248fe7bcd1cdca956560e80
.exe windows x86

b84f12c5d8845b2487b00d3afc55ea29

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MultiByteToWideChar
TlsGetValue
SetFilePointer
GetAtomNameA
VirtualAlloc
GetCPInfo
GetACP
TlsAlloc
HeapSize
TlsSetValue
EnumResourceTypesA
GetDateFormatA
SetStdHandle
IsValidCodePage
HeapReAlloc
IsProcessorFeaturePresent
WriteConsoleA
GetConsoleOutputCP
GetLocaleInfoA
RtlUnwind
GetOEMCP
GetTimeFormatA
RaiseException

shell32

SHDefExtractIconA
SHGetPathFromIDListA
SHGetFileInfoA
ShellExecuteExA
DragAcceptFiles
SHBrowseForFolderA
Shell_NotifyIconA

rpcrt4

RpcStringFreeA

Sections

.text
Size: 74KB - Virtual size: 74KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 87KB - Virtual size: 486KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy