fa3ccc50f62a8982c14010b63edf30c903d4db47f04891c6e466a70ada17cfe7 | Triage

Submit
Reports

Overview

overview

8

Static

static

fa3ccc50f6...e7.exe

windows7-x64

8

fa3ccc50f6...e7.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

fa3ccc50f62a8982c14010b63edf30c903d4db47f04891c6e466a70ada17cfe7.exe

Resource

win7-20220812-en

persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

fa3ccc50f62a8982c14010b63edf30c903d4db47f04891c6e466a70ada17cfe7.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

fa3ccc50f62a8982c14010b63edf30c903d4db47f04891c6e466a70ada17cfe7
Size

164KB
MD5

0f5a1204375836b9d629b7037182188f
SHA1

5cae7a30b31a1bb970493037bbd4f6b313cbc95e
SHA256

fa3ccc50f62a8982c14010b63edf30c903d4db47f04891c6e466a70ada17cfe7
SHA512

53b8d68e54a0f5a2c2040dd70ac4870b55cee63168bf18c4cc3958d8fb3a724a6abab10ca2f8a173275ef4f475461c383b3399c28b6ea602b6b89619a22247d0
SSDEEP

3072:ad+f7iktHPS9XPu9UGbOEVFW5D5QCEGVNUF9koY2RTjLuR+dh3g2XLx:R2ktvePuO3yQ+wVoTjS+dS2X

Score

N/A

Malware Config

Signatures

Files

fa3ccc50f62a8982c14010b63edf30c903d4db47f04891c6e466a70ada17cfe7
.exe windows x86

0683adc0139253eb1d77eea51f83e176

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoGetMalloc
CoTaskMemFree
ProgIDFromCLSID
StringFromCLSID

shlwapi

PathRemoveFileSpecW
SHGetValueW
PathCombineW
PathAppendW
PathFileExistsW

msimg32

AlphaBlend
TransparentBlt

kernel32

GetCalendarInfoA
GetLocalTime
CreateFileW
SetCurrentDirectoryW
SetFilePointerEx
GetProcessAffinityMask
ExitProcess
EnumResourceNamesA
FindFirstFileW
LockResource
GetCurrentDirectoryW
FlushInstructionCache
FindResourceExW
GetPriorityClass
LoadResource

Sections

.text
Size: 85KB - Virtual size: 85KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 1024B - Virtual size: 864B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 75KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy