5c65fa067d39ee4b4a8a871b0f21e356bb4d6692e40687af8d7da68207efa55f | Triage

Submit
Reports

Overview

overview

8

Static

static

5c65fa067d...5f.exe

windows7-x64

8

5c65fa067d...5f.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

5c65fa067d39ee4b4a8a871b0f21e356bb4d6692e40687af8d7da68207efa55f.exe

Resource

win7-20221111-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

5c65fa067d39ee4b4a8a871b0f21e356bb4d6692e40687af8d7da68207efa55f.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

5c65fa067d39ee4b4a8a871b0f21e356bb4d6692e40687af8d7da68207efa55f
Size

800KB
MD5

fb0c862f71c87b14a01fdad7dd1cdf30
SHA1

cea9445ec4aa973f9aa76139026e7c20de08fe77
SHA256

5c65fa067d39ee4b4a8a871b0f21e356bb4d6692e40687af8d7da68207efa55f
SHA512

700a5c6be152b3672b759d294440bf21741b42f570df7dcf3b273516a0e400d1e2b50c3c3bcbdc26cc81d19a904e9e6728ba79febf40c9f4663f89c10d5d5582
SSDEEP

12288:9GOk6ebw7v8xfE5d6t7+gvjjFFprxZGFDvOlBl5ldjwOoBDFC8sGvKGa:9fyk7vc0d6tVlTGF2pdUNBh3vi

Score

N/A

Malware Config

Signatures

Files

5c65fa067d39ee4b4a8a871b0f21e356bb4d6692e40687af8d7da68207efa55f
.exe windows x86

5693776ea29a9e83d97557e6a73e92e0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

HeapFree
GetPrivateProfileIntW
VirtualProtectEx
DeviceIoControl
DeviceIoControl
HeapDestroy
DeleteFileA
GetFileAttributesA
TlsGetValue
ClearCommBreak
GetProcessHeap
LoadLibraryA
SetLastError
lstrlenA
GetPrivateProfileSectionA
OpenMutexW
GetCurrentProcess
ResumeThread
CreateEventW
GetDriveTypeA
GetStringTypeA

uxtheme

CloseThemeData
GetThemeBool
DrawThemeBackground
OpenThemeData
GetWindowTheme
IsThemeActive
GetThemeColor
CloseThemeData
GetThemeTextExtent
SetWindowTheme
GetThemeTextMetrics
DrawThemeEdge
GetThemeSysSize

odbctrac

TraceSQLAllocStmt
TraceSQLAllocConnect
TraceSQLAllocEnv
TraceSQLBindCol

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1.4MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 794KB - Virtual size: 794KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.orpc
Size: 512B - Virtual size: 288B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy