f6af525813518c261ae4033ebc42e9dfbb88c5b5516ff705a634b3b465181267 | Triage

Submit
Reports

Overview

overview

8

Static

static

f6af525813...67.exe

windows7-x64

8

f6af525813...67.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

f6af525813518c261ae4033ebc42e9dfbb88c5b5516ff705a634b3b465181267.exe

Resource

win7-20220812-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

f6af525813518c261ae4033ebc42e9dfbb88c5b5516ff705a634b3b465181267.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

f6af525813518c261ae4033ebc42e9dfbb88c5b5516ff705a634b3b465181267
Size

810KB
MD5

8a4a929460463b3ce2738af92cf2bee5
SHA1

9f141a1ccb02759cb80d5882ec28b18a4749b419
SHA256

f6af525813518c261ae4033ebc42e9dfbb88c5b5516ff705a634b3b465181267
SHA512

f8b9e5cea59a885a5472d193209f31a3c9678e15f97bbcaa22b097493d2515e8bb357610ecbb0dc5426793e0805216f83e8cb4d9fe53fc12b61250961e50fd53
SSDEEP

12288:RQ4bOE4vK5Z9nD4cH5LBcl3Nuu2vUduTyZKh1+A+8vPUs25EafnTNrshltp49Ydl:tOpgZ3LMculduTyZ0+uPUs25ESsh7o8

Score

N/A

Malware Config

Signatures

Files

f6af525813518c261ae4033ebc42e9dfbb88c5b5516ff705a634b3b465181267
.exe windows x86

952408d31e1d7497367a876be5c6721e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentDirectoryW
GetLastError
GetLastError
IsBadStringPtrA
CreateSemaphoreA
GetLastError
LoadLibraryW
GetLogicalDriveStringsA
GetLastError
GetModuleHandleA
VirtualProtectEx
GetLastError
lstrcpyA
MoveFileW
GetFullPathNameA
GetLastError
GetLastError

onex

OneXQueryState
OneXUIResponse
OneXQueryStatistics
OneXUpdatePortProfile

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.odata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 801KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy