e52c4f47b11588a773b6ec2792ef318228388427ec466a0b3356b2b18261f094 | Triage

Submit
Reports

Overview

overview

Static

static

e52c4f47b1...94.exe

windows7-x64

e52c4f47b1...94.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

e52c4f47b11588a773b6ec2792ef318228388427ec466a0b3356b2b18261f094.exe

Resource

win7-20221111-en

pony collection discovery rat spyware stealer

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

e52c4f47b11588a773b6ec2792ef318228388427ec466a0b3356b2b18261f094.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

e52c4f47b11588a773b6ec2792ef318228388427ec466a0b3356b2b18261f094
Size

70KB
MD5

a659ec1cd6fd2975e5fb1b2db6037fcd
SHA1

89ab0fca17af4167828ebc60abb5ff766dbd9086
SHA256

e52c4f47b11588a773b6ec2792ef318228388427ec466a0b3356b2b18261f094
SHA512

da89d9c2701be049491781dd0e9df78cf11d9cd9ef0a7c30bb50e2d61b094a1e3f58b195e51a440c701fa358357e5ef5ebe09b1f67a65dd0e0bf9232c61bc647
SSDEEP

1536:oLYnkDKoZM/NvcmQmDcBSI5pK0CtcNCTKr2doxyiD+al:H48NEmNDK37hCKr4oxyiSa

Score

N/A

Malware Config

Signatures

Files

e52c4f47b11588a773b6ec2792ef318228388427ec466a0b3356b2b18261f094
.exe windows x86

99639293bc52b052c47d8d428aac1715

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

_hread
GetCPInfoExA
VirtualQueryEx
CommConfigDialogA
GetModuleHandleA
GetStringTypeA
LCMapStringW
LCMapStringA
LoadLibraryA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
WideCharToMultiByte
TerminateProcess
GetCurrentProcess
HeapFree
GetLastError
CloseHandle
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
VirtualFree
RtlUnwind
WriteFile
MultiByteToWideChar
GetCPInfo
CompareStringA
CompareStringW
GetACP
GetOEMCP
SetEnvironmentVariableA
HeapAlloc
VirtualAlloc
HeapReAlloc
SetStdHandle
FlushFileBuffers
SetFilePointer
GetProcAddress
GetStringTypeW

user32

CharLowerBuffW
CreateDesktopW
MessageBoxW

Sections

.text
Size: 58KB - Virtual size: 58KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy