e796cc6924c31f424a3549c076c62d6cd551a178226657d6d0ad0b2b93e1a9b2 | Triage

Submit
Reports

Overview

overview

Static

static

e796cc6924...b2.exe

windows7-x64

e796cc6924...b2.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

e796cc6924c31f424a3549c076c62d6cd551a178226657d6d0ad0b2b93e1a9b2.exe

Resource

win7-20220901-en

pony discovery rat spyware stealer

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

e796cc6924c31f424a3549c076c62d6cd551a178226657d6d0ad0b2b93e1a9b2.exe

Resource

win10v2004-20221111-en

pony discovery rat spyware stealer

windows10-2004-x64

4 signatures

150 seconds

General

Target

e796cc6924c31f424a3549c076c62d6cd551a178226657d6d0ad0b2b93e1a9b2
Size

93KB
MD5

c675864f8115abc6bc36dce2a9d7b0bb
SHA1

26badbc5be4efc5743c6ff66b9dd780eb8cbe126
SHA256

e796cc6924c31f424a3549c076c62d6cd551a178226657d6d0ad0b2b93e1a9b2
SHA512

c77fb3e33de8b0db2fca7d2dd0e46786c585cb8c2898f5c2c6614ebbe3a72c70530effccf3955b1b23332f57f704fc4cf3c1198966ccf9ff17280e0e39b97bae
SSDEEP

1536:d38vHxl3cVJxZdh3H2M/C4vuFNqy+NFsE7a52lTiZcvJwuoAz6EVQ25L6SYp:d3aHT3Edh3gYDPFKAlmZcaxY6gt5L

Score

N/A

Malware Config

Signatures

Files

e796cc6924c31f424a3549c076c62d6cd551a178226657d6d0ad0b2b93e1a9b2
.exe windows x86

0d478c8808840d8f52a7930621c92698

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetWindowLongA
CheckDlgButton
IsDlgButtonChecked
SetWindowTextA
GetClipboardViewer
BeginPaint
EndPaint
EnableScrollBar
LoadIconA
LoadCursorA
RegisterClassExA
CreateWindowExA
ShowWindow
UpdateWindow
TranslateMessage
DispatchMessageA
GetMessageA

gdi32

SetBkMode
SetMapMode
CreatePatternBrush
CreateEllipticRgn
CreatePen
DeleteObject
GetStockObject

ole32

CoGetCallerTID
CoWaitForMultipleHandles
StgIsStorageFile
OleSetContainedObject
CoUnmarshalHresult
CoGetTreatAsClass
CoIsOle1Class

kernel32

HeapFree
GetFileAttributesExA
GetACP
InitializeCriticalSection
GetEnvironmentStrings
GetModuleHandleA
GetStartupInfoA
HeapAlloc
HeapCreate
InterlockedExchangeAdd
QueryPerformanceFrequency
GetLastError
InterlockedExchange
HeapDestroy
DeleteCriticalSection
LeaveCriticalSection
GetCommandLineA
EnterCriticalSection

Sections

.text
Size: 89KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy