939713217f7bc420d468cb4b9736e561d62584b79fc3b3e2d32fb314f875df56 | Triage

Submit
Reports

Overview

overview

8

Static

static

939713217f...56.exe

windows7-x64

8

939713217f...56.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

939713217f7bc420d468cb4b9736e561d62584b79fc3b3e2d32fb314f875df56.exe

Resource

win7-20221111-en

spyware stealer upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

939713217f7bc420d468cb4b9736e561d62584b79fc3b3e2d32fb314f875df56.exe

Resource

win10v2004-20221111-en

spyware stealer upx

windows10-2004-x64

3 signatures

150 seconds

General

Target

939713217f7bc420d468cb4b9736e561d62584b79fc3b3e2d32fb314f875df56
Size

189KB
MD5

59860ce979210ddfcc1fd9d98382ca18
SHA1

c5a3d1b6214910355b78afbb0604daabdd1ec045
SHA256

939713217f7bc420d468cb4b9736e561d62584b79fc3b3e2d32fb314f875df56
SHA512

1f137fff309093b900a2b3c4f8fc2a551f1c97091fb2b59bbb09de905d3d64d9574daa88295016ee29a9fda08e9ccd548e4a153902b42d8220e0bdb903491a23
SSDEEP

3072:FBPLq4+/SUQa/DHmwDW6d86Ud8xhjuREPt2P+9TLyi1bjOlu6qvu/xb6H42:vz7+6UQabOR5dOhSRE12PGLRjOlu6vy4

Score

N/A

Malware Config

Signatures

Files

939713217f7bc420d468cb4b9736e561d62584b79fc3b3e2d32fb314f875df56
.exe windows x86

f86392031592820c5914cc0ec2e66cf4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

shell32

ShellExecuteA
Shell_NotifyIconA

kernel32

FindAtomA
LocalFree
GetFileAttributesW
OutputDebugStringA
DuplicateHandle
OutputDebugStringW
GetCurrentDirectoryW
WideCharToMultiByte
GetFileInformationByHandle
CreateDirectoryW
VirtualProtect
SetEnvironmentVariableW
GetCurrentThreadId
LocalAlloc
EnumResourceLanguagesA
lstrlenW
SearchPathW
ExitProcess
SetLastError
GetStringTypeExW
lstrcmpiW
GetModuleFileNameW
MultiByteToWideChar
VirtualQuery
GetCurrentProcess
GetModuleHandleA
InterlockedExchange

shlwapi

StrRetToStrA
SHCreateStreamOnFileEx
PathAppendA
PathIsFileSpecA
PathIsContentTypeA
PathCreateFromUrlW

oleacc

CreateStdAccessibleObject

Sections

.text
Size: 98KB - Virtual size: 238KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 87KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy