3b217f8b5d33aabe4845f25da60fbd7d655a1088a06e7f8d1fa2ea6cfbda5a1d | Triage

Submit
Reports

Overview

overview

8

Static

static

3b217f8b5d...1d.exe

windows7-x64

8

3b217f8b5d...1d.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

3b217f8b5d33aabe4845f25da60fbd7d655a1088a06e7f8d1fa2ea6cfbda5a1d.exe

Resource

win7-20220812-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

3b217f8b5d33aabe4845f25da60fbd7d655a1088a06e7f8d1fa2ea6cfbda5a1d.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

3b217f8b5d33aabe4845f25da60fbd7d655a1088a06e7f8d1fa2ea6cfbda5a1d
Size

810KB
MD5

0c66fa63f017947b7752b71f3d9b9bf6
SHA1

798bfb77fe55862c7c0c5299401219536f7ca635
SHA256

3b217f8b5d33aabe4845f25da60fbd7d655a1088a06e7f8d1fa2ea6cfbda5a1d
SHA512

e55ef7c96a6ce64a73f82a367b9d86f48bd0031421fc585e640a6eaa28b9f5b55fd2cfd927b2584b5e08999b0d5e0e50fc2b6d60dec5e02db5de3d5765fd2aec
SSDEEP

24576:o5d5PNv9PuCo4AwE5T5CQmltUhDnPc/M9Y18:UtN1oUE5VCQmf2nP2mY6

Score

N/A

Malware Config

Signatures

Files

3b217f8b5d33aabe4845f25da60fbd7d655a1088a06e7f8d1fa2ea6cfbda5a1d
.exe windows x86

5d63b62897ae507c95f31b6c93fc09b1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameA
ReadFile
TlsGetValue
CancelIo
CloseHandle
GetConsoleTitleW
DeleteFileA
GetCommandLineW
GetTickCount
GetModuleHandleA
VirtualProtectEx
CreateDirectoryW
LeaveCriticalSection
GlobalFree
lstrlenW
GetFileSize
WriteConsoleW
CreateFileA
RemoveDirectoryA
GetCalendarInfoA
GetStartupInfoA
CancelIo
EnterCriticalSection
Sleep
InitializeCriticalSection

user32

IsWindow
wsprintfA
GetWindowLongA
IsWindowEnabled
DestroyMenu
IsWindowVisible
GetSysColor
PeekMessageA
GetClassInfoA
DispatchMessageA
MessageBoxA
CreateIcon
GetWindowLongA

cryptdlg

CertTrustCertPolicy
CertTrustInit
CertConfigureTrustA
CertTrustCleanup

advapi32

RegCloseKey

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 800KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy