0af52e5db271c2f2ebb7d0d5162030b8ecdce2b12a1ca7b5b991724b27bdf39e | Triage

Submit
Reports

Overview

overview

8

Static

static

0af52e5db2...9e.exe

windows7-x64

8

0af52e5db2...9e.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

0af52e5db271c2f2ebb7d0d5162030b8ecdce2b12a1ca7b5b991724b27bdf39e.exe

Resource

win7-20220812-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

0af52e5db271c2f2ebb7d0d5162030b8ecdce2b12a1ca7b5b991724b27bdf39e.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

0af52e5db271c2f2ebb7d0d5162030b8ecdce2b12a1ca7b5b991724b27bdf39e
Size

797KB
MD5

07698915ee24a0c02faf430ebb46c010
SHA1

2d52ac52f10fb9ac21256b42a78566a39845be81
SHA256

0af52e5db271c2f2ebb7d0d5162030b8ecdce2b12a1ca7b5b991724b27bdf39e
SHA512

2aa50566d303cf35b34754f4b3a15c5b4db4429eedc8ca9e89c82ec2e8fb010e7999aae94818987b0ebe08344813b0f9cf45ace280ea502b4a4c061abbc230cd
SSDEEP

24576:d+wzZYZAeC1gO8QXalldf2cpXdSsW8dgbV:dxPvgO81llMKXDW8ds

Score

N/A

Malware Config

Signatures

Files

0af52e5db271c2f2ebb7d0d5162030b8ecdce2b12a1ca7b5b991724b27bdf39e
.exe windows x86

545bbbb7c7aa27fb2f2c37898b44c9b2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

SetLastError
GetExitCodeThread
IsBadWritePtr
CancelIo
GetModuleHandleA
RemoveDirectoryA
GetCommandLineA
CreateMailslotW
GetFileAttributesA
GetStdHandle
VirtualProtect
HeapSize
CreateDirectoryA
FindClose
FindResourceA
ResetEvent
GetDriveTypeW
IsValidCodePage
GetLocaleInfoA
MapViewOfFile
GetProcessHeap

user32

GetCapture
DestroyMenu
LoadCursorA
IsDialogMessageA
PeekMessageA
GetWindowLongW
wsprintfA
DispatchMessageA
LoadImageW
GetWindowTextW
PostMessageW
SetCursor
SetFocus

ipsmsnap

DllUnregisterServer
DllCanUnloadNow
DllGetClassObject
DllGetClassObject

rasapi32

DwRasUninitialize

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 696KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 789KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.import
Size: 512B - Virtual size: 464B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy