35249591747c7352a049067ab017cd0aee7107774b91ff4a28af7f8a121c0a17 | Triage

Submit
Reports

Overview

overview

Static

static

3524959174...17.exe

windows7-x64

3524959174...17.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

35249591747c7352a049067ab017cd0aee7107774b91ff4a28af7f8a121c0a17.exe

Resource

win7-20220901-en

pony discovery evasion persistence rat spyware stealer upx

windows7-x64

20 signatures

150 seconds

Behavioral task

behavioral2

Sample

35249591747c7352a049067ab017cd0aee7107774b91ff4a28af7f8a121c0a17.exe

Resource

win10v2004-20221111-en

pony discovery evasion persistence rat spyware stealer upx

windows10-2004-x64

22 signatures

150 seconds

General

Target

35249591747c7352a049067ab017cd0aee7107774b91ff4a28af7f8a121c0a17
Size

275KB
MD5

f840db12a1ea94745d3653d468d4f0ce
SHA1

05402b13ce81dbbe113d591d1792b863ebd3e31f
SHA256

35249591747c7352a049067ab017cd0aee7107774b91ff4a28af7f8a121c0a17
SHA512

d751f9a1e17c12c00ca1d0fe1e4b98a216bc677c10a4fa21a4c04c8d22f566b38bd9679b29838368af2430556275f72f5fe15de321829824e59970e0d41ad932
SSDEEP

6144:wmui0L90a+3m5ITP8XBx404ve7ursBOCnitzJ9Plds72YR3XohqOiV0WA//a:ki0LK/m5w6B0v7rKVMzJJMLRnohqOiV5

Score

N/A

Malware Config

Signatures

Files

35249591747c7352a049067ab017cd0aee7107774b91ff4a28af7f8a121c0a17
.exe windows x86

429cedc41eb9c5d0e3a798a588897b7a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetOEMCP
RtlUnwind
HeapAlloc
GetACP
LCMapStringW
LoadLibraryA
GetCPInfo
GetStringTypeA
EnumResourceTypesA
VirtualAlloc
GetStringTypeW
LCMapStringA
SetUnhandledExceptionFilter
FindFirstFileExW
IsDebuggerPresent
InterlockedExchange
GetCurrentProcess
WriteFile
GetLocaleInfoA

msimg32

TransparentBlt

oleacc

GetOleaccVersionInfo
AccessibleObjectFromEvent

Sections

.text
Size: 131KB - Virtual size: 131KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 141KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy