368134604922e5a53bc55150869db33a6c6bf0af1b616f30ea7b6250cbfd6265 | Triage

Submit
Reports

Overview

overview

8

Static

static

3681346049...65.exe

windows7-x64

8

3681346049...65.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

368134604922e5a53bc55150869db33a6c6bf0af1b616f30ea7b6250cbfd6265.exe

Resource

win7-20220812-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

368134604922e5a53bc55150869db33a6c6bf0af1b616f30ea7b6250cbfd6265.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

368134604922e5a53bc55150869db33a6c6bf0af1b616f30ea7b6250cbfd6265
Size

797KB
MD5

b98060e1009323d31870347ea0710044
SHA1

c04496dde0a61f2a00aa307b7cdd8055daa0b986
SHA256

368134604922e5a53bc55150869db33a6c6bf0af1b616f30ea7b6250cbfd6265
SHA512

cc273bbdc1cd14b8d99346b42a4d06219be6a4193094d2866c057dab5dad91f16cce95086f09cb66b2d30c5931eaf329bca79721b3290e2f426cecf10e13ce7a
SSDEEP

24576:3gsPxey3mwJ2OFTcSnTOtqO0/8z0qlGNBk:3gHS1oOFTfitqYjuB

Score

N/A

Malware Config

Signatures

Files

368134604922e5a53bc55150869db33a6c6bf0af1b616f30ea7b6250cbfd6265
.exe windows x86

40d616f4834f9a8ef33f9df618aaf1de

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetVersionExA
GetCurrentThread
DeviceIoControl
SetLastError
GetFileAttributesW
GetPrivateProfileIntA
GetFileAttributesW
GetCurrentProcess
SetCommBreak
FindClose
GetPrivateProfileSectionA
GetModuleHandleA
CreateEventA
LocalFlags
CreateDirectoryW
GlobalLock
RemoveDirectoryW
VirtualProtectEx
HeapFree
GetStringTypeA
CloseHandle

user32

PostMessageW
SetFocus
GetWindowLongW
IsZoomed
PeekMessageW
IsDialogMessageA
GetWindowTextW
wsprintfW
GrayStringA
IsWindow
LoadCursorW
SetCursorPos
DispatchMessageA

mswsock

getnetbyname
GetAddressByNameA
GetNameByTypeA
GetServiceA

ntshrui

IsPathSharedA

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 699KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 789KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.import
Size: 512B - Virtual size: 388B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy