90caf92cde9689fccd691d9e7baf9166c7767fabd5b1830cc53f2bc467ea9cc6 | Triage

Submit
Reports

Overview

overview

8

Static

static

90caf92cde...c6.exe

windows7-x64

8

90caf92cde...c6.exe

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

90caf92cde9689fccd691d9e7baf9166c7767fabd5b1830cc53f2bc467ea9cc6.exe

Resource

win7-20220812-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

90caf92cde9689fccd691d9e7baf9166c7767fabd5b1830cc53f2bc467ea9cc6.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

90caf92cde9689fccd691d9e7baf9166c7767fabd5b1830cc53f2bc467ea9cc6
Size

815KB
MD5

bbf9998febd7f4b644edabb09ccb3812
SHA1

ee882af56f964c189c5e531d9fda9c07529548a2
SHA256

90caf92cde9689fccd691d9e7baf9166c7767fabd5b1830cc53f2bc467ea9cc6
SHA512

0849197789e2a54f92f2a707d95c1de745446b105c62443ce679d4f6167d1a5e4bd8abc24b2cebe3a926d904e074b15c97149d4e41054ad7d21dfa282c383947
SSDEEP

24576:GG2hitUl1SK7UphjZtT8p9y3mFgTbpQbzR9:GGhOSK7IhjrKy3ugTWbz

Score

N/A

Malware Config

Signatures

Files

90caf92cde9689fccd691d9e7baf9166c7767fabd5b1830cc53f2bc467ea9cc6
.exe windows x86

7dbb63eacb4cff79349adfd51efb0018

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetCurrentDirectoryA
lstrcpynA
TlsGetValue
lstrcpynA
GetCurrentProcess
GetModuleFileNameW
lstrcpynA
DeleteFileW
GetPrivateProfileIntA
VirtualAlloc
GetLocaleInfoW
GetNumberFormatA
GetModuleHandleA
lstrlenA
TlsAlloc
CreateEventA
GetFullPathNameA
lstrcpynA
GetStartupInfoW
TlsAlloc
FormatMessageA
lstrcpynA
UnmapViewOfFile

wavemsp

DllUnregisterServer
DllRegisterServer
DllGetClassObject
DllCanUnloadNow

Sections

.text
Size: 12KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 800B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.edata
Size: 797KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ndata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy