6773576ea848c188c5b468a08458fbb869a6ccb528e474316effa542bc396675 | Triage

Submit
Reports

Overview

overview

8

Static

static

6773576ea8...75.exe

windows7-x64

8

6773576ea8...75.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

6773576ea848c188c5b468a08458fbb869a6ccb528e474316effa542bc396675.exe

Resource

win7-20220812-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

6773576ea848c188c5b468a08458fbb869a6ccb528e474316effa542bc396675.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

6773576ea848c188c5b468a08458fbb869a6ccb528e474316effa542bc396675
Size

802KB
MD5

04c6c3f305785cd72cc4ddb4005703e6
SHA1

dd4f524d40dd04fd4bed6dee7cf24ed4d7cd1e4f
SHA256

6773576ea848c188c5b468a08458fbb869a6ccb528e474316effa542bc396675
SHA512

0f6bebafc2625c62d2eefa8724a0c7f14d87338aeeecccd0edd2b074a6f00d7ac982fcf3798d05e935ca1dc16b48c3e0c6bca28f4afa4cf4b7dd0c3a5f74efba
SSDEEP

12288:ISBnY+x2uT+RIo1TFiI22TaXVW/7P/5WPKPgFyLWxUfzRYIZZlw:TxKtFyVWDhWP02ygUqAZS

Score

N/A

Malware Config

Signatures

Files

6773576ea848c188c5b468a08458fbb869a6ccb528e474316effa542bc396675
.exe windows x86

e23a09ec54b01e5671c511bee0733e13

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFileTime
GetModuleHandleA
DeleteFileW
InterlockedExchange
CreateFileW
GetProcessHeap
OpenMutexA
LeaveCriticalSection
OpenEventA
CreateDirectoryA
GetVolumePathNameA
GetDriveTypeW
GetFileAttributesA
VirtualProtectEx
FindAtomW
DeleteFileW
GetProcessVersion
SetFilePointer
GlobalFlags
GetModuleFileNameA
CreateFileW
GetCurrentThreadId
PulseEvent
HeapDestroy
GetConsoleMode

user32

SetRect
LoadCursorA
DispatchMessageA
GetWindowTextA
GetWindowLongA
MessageBoxA
PeekMessageA
IsMenu
DestroyMenu
SetFocus
GetWindowLongA
wsprintfA
DestroyIcon

dot3msm

DllMain
Dot3MsmDisconnect
Dot3MsmDeInit
Dot3MsmFreeProfile

advapi32

IsValidAcl

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 793KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy