eedc85608441c195ea255c3bbc9ad4d756f2b84cbdda375c1551c633e7172192 | Triage

Submit
Reports

Overview

overview

8

Static

static

eedc856084...92.exe

windows7-x64

8

eedc856084...92.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

eedc85608441c195ea255c3bbc9ad4d756f2b84cbdda375c1551c633e7172192.exe

Resource

win7-20220901-en

spyware stealer upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

eedc85608441c195ea255c3bbc9ad4d756f2b84cbdda375c1551c633e7172192.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

eedc85608441c195ea255c3bbc9ad4d756f2b84cbdda375c1551c633e7172192
Size

190KB
MD5

0befc5959b1be588932cc7fca6ad3644
SHA1

ff9a961526e2a48d59664ba83a012b0e66576654
SHA256

eedc85608441c195ea255c3bbc9ad4d756f2b84cbdda375c1551c633e7172192
SHA512

0e1d36986f8cc35b23e911711eb797cfe37a6cfafa849f357b3853d7d20add49d399cf2a991ab7f2870ecfffdc2372ecc10be64cc589305f6ccd768b238e135a
SSDEEP

3072:pbO6OEajUSL8B9SqAx12RTHGZg1O0VQjdTiuE80qKu0i+oiyi5eVItmvuXQsIxH:RrCYSLv2dIgMKedDDD+oinqugsIJ

Score

N/A

Malware Config

Signatures

Files

eedc85608441c195ea255c3bbc9ad4d756f2b84cbdda375c1551c633e7172192
.exe windows x86

3828029b6bdf8b4731f7ed4ef80353ff

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoGetMalloc
CoTaskMemAlloc
CoCreateInstance
StringFromGUID2
CoTaskMemFree
CoTaskMemRealloc

gdi32

GetTextExtentPointA
SelectObject
DeleteObject
GetDeviceCaps
GetTextMetricsA
CreateFontIndirectA

msimg32

AlphaBlend
TransparentBlt

kernel32

GetLastError
GetCPInfoExW
GetACP
GetThreadLocale
MultiByteToWideChar
GetEnvironmentStrings
GetCPInfo
UnhandledExceptionFilter
DeleteCriticalSection
GetStdHandle
lstrlenW
TlsGetValue
FreeEnvironmentStringsA
InterlockedExchange
GetLocaleInfoA
LeaveCriticalSection
HeapSize
InitializeCriticalSection
EnumResourceTypesA
GetStartupInfoA
RaiseException
GetTickCount
TlsSetValue
InterlockedIncrement
GetEnvironmentStringsW
QueryPerformanceCounter
GetOEMCP
LoadLibraryW
GetFileType
EnterCriticalSection
WideCharToMultiByte
WriteFile
FreeEnvironmentStringsW
GetVersionExA
SetHandleCount
GetCurrentProcessId

Sections

.text
Size: 106KB - Virtual size: 106KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 228KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy