7785e6f7b814b54c8af852de9411d2b147f47847b4cf3d2487572ff0c9086605 | Triage

Submit
Reports

Overview

overview

8

Static

static

7785e6f7b8...05.exe

windows7-x64

8

7785e6f7b8...05.exe

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

7785e6f7b814b54c8af852de9411d2b147f47847b4cf3d2487572ff0c9086605.exe

Resource

win7-20220812-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

7785e6f7b814b54c8af852de9411d2b147f47847b4cf3d2487572ff0c9086605.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

7785e6f7b814b54c8af852de9411d2b147f47847b4cf3d2487572ff0c9086605
Size

813KB
MD5

d8e64dea4131bf6820584218c699f424
SHA1

4a15c1da8d8aa8c9641806215fd3283c8f8ee770
SHA256

7785e6f7b814b54c8af852de9411d2b147f47847b4cf3d2487572ff0c9086605
SHA512

f27fd072418ba0a99f11769a350c77def2ea308d1929bd321f751098a00584ac4e54fcbee8f61c079f54466b2716bb81f09372b6d3543bd426c0b37515b7793a
SSDEEP

24576:jFy/I8xNX1jpdC9j+IKbD4cH8dtPDnqeRKTyd:pQVh1ZIKb8ccdRn3d

Score

N/A

Malware Config

Signatures

Files

7785e6f7b814b54c8af852de9411d2b147f47847b4cf3d2487572ff0c9086605
.exe windows x86

b80b85ace5c3304dd7f56029231b0c55

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetCurrentDirectoryA
GetConsoleTitleA
SetEndOfFile
LoadLibraryA
GetStringTypeA
lstrcpyW
GetProcessVersion
GetTickCount
SetEnvironmentVariableA
DeleteFileA
OpenThread
LeaveCriticalSection
GetFileSize
EnterCriticalSection
GetPrivateProfileIntW
SetVolumeLabelW
GetCurrentProcess
HeapCreate
FoldStringA

activeds

ConvertSecurityDescriptorToSecDes
ADsGetObject
ADsGetLastError
ADsSetLastError

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 801KB - Virtual size: 3.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy