ac12efda1b38a6092c20518f9fb15896aa5b7309b5c88ea3ac41cc7d8268319d | Triage

Submit
Reports

Overview

overview

8

Static

static

ac12efda1b...9d.exe

windows7-x64

8

ac12efda1b...9d.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

ac12efda1b38a6092c20518f9fb15896aa5b7309b5c88ea3ac41cc7d8268319d.exe

Resource

win7-20221111-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

ac12efda1b38a6092c20518f9fb15896aa5b7309b5c88ea3ac41cc7d8268319d.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

ac12efda1b38a6092c20518f9fb15896aa5b7309b5c88ea3ac41cc7d8268319d
Size

813KB
MD5

55f342c0a8d391bf6fcbec1d0d534146
SHA1

02ea714a396736140fe790a5df922e549200d5f7
SHA256

ac12efda1b38a6092c20518f9fb15896aa5b7309b5c88ea3ac41cc7d8268319d
SHA512

d30025450cc842b0e17e110e8ba44d84557d09a51370c2b996c6110f21bb8d41d69ca7ac425094c61f7f063bb64f15029ef3b100bf24a8901bc5c0bfde561027
SSDEEP

24576:fcgtwFXOhESVBoW6hR6z2qyYmoAfhEqE+SR:fzt1ESVBoW6hR6YWoEUY

Score

N/A

Malware Config

Signatures

Files

ac12efda1b38a6092c20518f9fb15896aa5b7309b5c88ea3ac41cc7d8268319d
.exe windows x86

c563de0ff52ac51c0a9bb55a691325a0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetStdHandle
GetTickCount
SetEnvironmentVariableA
LoadLibraryA
GetShortPathNameW
WriteConsoleW
HeapCreate
GetCurrentProcess
GetVolumePathNameW
SetVolumeLabelA
GetStringTypeA
HeapFree
GetVolumeInformationW
SetCurrentDirectoryA
lstrcpyA
CreateEventW
GetPrivateProfileIntW
CreateMutexW
WriteConsoleA

aaclient

g_fnStartTransport
LoadClientAdapter
OpenKeyReader
OpenKeyReaderWriter

Sections

.CODE
Size: 9KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.kdata
Size: 1024B - Virtual size: 2.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fdata
Size: 801KB - Virtual size: 801KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy