4c9ad0dd6d9303fd89414cf725c6860bf14ec1f9c8126e2df05d057139470761 | Triage

Submit
Reports

Overview

overview

Static

static

4c9ad0dd6d...61.exe

windows7-x64

4c9ad0dd6d...61.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

4c9ad0dd6d9303fd89414cf725c6860bf14ec1f9c8126e2df05d057139470761.exe

Resource

win7-20220812-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

4c9ad0dd6d9303fd89414cf725c6860bf14ec1f9c8126e2df05d057139470761.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

4c9ad0dd6d9303fd89414cf725c6860bf14ec1f9c8126e2df05d057139470761
Size

115KB
MD5

0ff8e4c2e9d8f4a4cf8b983c9bfafec0
SHA1

cd70da8693111be46ae2c610c536c5024de3151b
SHA256

4c9ad0dd6d9303fd89414cf725c6860bf14ec1f9c8126e2df05d057139470761
SHA512

240fc1782cd4c0a18a348b25f9874c0c175e46a4f80dd3a9188ecc3e919f9136c994fa658d1e5a8462298809f780ae44ee176920a237812ecdac7856503ffad0
SSDEEP

3072:hMpR5ZAybWKvG12WcPQGLNRMdZh04LS1tLlnUPoaHf:8qKvGo/duZhtS1ZlU7Hf

Score

N/A

Malware Config

Signatures

Files

4c9ad0dd6d9303fd89414cf725c6860bf14ec1f9c8126e2df05d057139470761
.exe windows x86

506442c62425fcac0ce8e21ede13a3dd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetFileAttributesA
WriteConsoleW
SetPriorityClass
GetLastError
GetModuleHandleA
GetFileSize
IsValidLocale
FindResourceA
lstrcpyW
ReleaseMutex
WriteConsoleW
GetCurrentDirectoryA
WriteConsoleW
HeapCreate
IsBadCodePtr
IsBadStringPtrA
ReadFile
lstrlenW
CloseHandle
GetStartupInfoA
GetFileTime

msftedit

RichEditWndProc
RichComboBoxWndProc
SetCustomTextOutHandlerEx
RichListBoxWndProc

shell32

StrChrA
DragAcceptFiles
ExtractIconW
ShellAboutA
SHGetFolderPathA
SHGetMalloc
DragQueryFileA
ShellAboutA
SHGetFileInfoA
DuplicateIcon
ShellMessageBoxW
ShellMessageBoxW
FreeIconList

msasn1

ASN1BERDecEoid

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 104KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 1024B - Virtual size: 67B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy