f5da53d944fad9126ca43e0d29f26a8212336f1557f9c4984ccbe14c52018e39 | Triage

Submit
Reports

Overview

overview

8

Static

static

f5da53d944...39.exe

windows7-x64

8

f5da53d944...39.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

f5da53d944fad9126ca43e0d29f26a8212336f1557f9c4984ccbe14c52018e39.exe

Resource

win7-20220812-en

persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

f5da53d944fad9126ca43e0d29f26a8212336f1557f9c4984ccbe14c52018e39.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

f5da53d944fad9126ca43e0d29f26a8212336f1557f9c4984ccbe14c52018e39
Size

125KB
MD5

28b73ace9920bcb6d8e53fb6ad277722
SHA1

5625495cd7ac4804685b03cede6f69dd42829e2a
SHA256

f5da53d944fad9126ca43e0d29f26a8212336f1557f9c4984ccbe14c52018e39
SHA512

5d5d6b5610a81843b736a7fb3cf2b5a23077038d4461e36c2af73d1df639ba21f6ef27b71a4f1c794cf5c38fa5fb326dbed7e2fd59a187e46ae57ec16c7b73a1
SSDEEP

3072:qQmRLhHX9rOieMAEjKSsNPUM0RvnchDx7Xc8:BKLhHNheMAEjKP50RvuZ

Score

N/A

Malware Config

Signatures

Files

f5da53d944fad9126ca43e0d29f26a8212336f1557f9c4984ccbe14c52018e39
.exe windows x86

e987f3c6a285aaa0ca1abace4538a50f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ClearCommBreak
GetStartupInfoA
ClearCommBreak
QueryPerformanceCounter
EnumResourceNamesW
ExitProcess
ExitProcess
CreateProcessW
GetExitCodeProcess

rpcrt4

RpcBindingFromStringBindingA
RpcStringBindingComposeA
NdrClientCall
RpcBindingSetAuthInfoA
RpcStringFreeA

user32

SetTimer
CharUpperA
GetMessageA
PostThreadMessageA
KillTimer
PeekMessageA

Sections

.text
Size: 87KB - Virtual size: 86KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 684B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rscr
Size: 512B - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy