ab9cc2ba691b3e09ed62adc08a1d7354a8b2d2c5d76bf23a45866ddc8213cf5d | Triage

Submit
Reports

Overview

overview

Static

static

ab9cc2ba69...5d.exe

windows7-x64

ab9cc2ba69...5d.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

ab9cc2ba691b3e09ed62adc08a1d7354a8b2d2c5d76bf23a45866ddc8213cf5d.exe

Resource

win7-20221111-en

pony discovery evasion persistence rat spyware stealer upx

windows7-x64

20 signatures

150 seconds

Behavioral task

behavioral2

Sample

ab9cc2ba691b3e09ed62adc08a1d7354a8b2d2c5d76bf23a45866ddc8213cf5d.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

ab9cc2ba691b3e09ed62adc08a1d7354a8b2d2c5d76bf23a45866ddc8213cf5d
Size

286KB
MD5

51a2dfa0d99b1df76805ee91b16429ce
SHA1

c67d01168d0e993bea9e1033cb3bca576c2b8912
SHA256

ab9cc2ba691b3e09ed62adc08a1d7354a8b2d2c5d76bf23a45866ddc8213cf5d
SHA512

700f34012225c046d514046c61594080d1c60cff95fe36803a8408d3d5d56ab373da0f07f788185adaeb687741fe45a96237664c8b29222e95f11f83b02c815e
SSDEEP

6144:rUuNvw2P6pv4OlC3Hk+P+L+KwEaMymFZDgGg5H0+gJWp:YM42ylmHb+LxxXg9H0HG

Score

N/A

Malware Config

Signatures

Files

ab9cc2ba691b3e09ed62adc08a1d7354a8b2d2c5d76bf23a45866ddc8213cf5d
.exe windows x86

1052b239a7a4f9bf6b294105faf303cd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LeaveCriticalSection
SetStdHandle
LoadLibraryA
GlobalGetAtomNameA
FreeLibrary
WriteConsoleA
GetSystemTimeAsFileTime
GetCurrentProcessId
IsValidCodePage
SetFilePointer
GetCurrentProcess
IsDebuggerPresent
VirtualAlloc
GetDateFormatA
GetTimeFormatA
GetOEMCP
EnumResourceNamesW
GetACP
TerminateProcess
UnhandledExceptionFilter
MultiByteToWideChar
SetUnhandledExceptionFilter
GetStringTypeA
HeapSize
InitializeCriticalSection
WriteFile
HeapReAlloc
GetLocaleInfoA
RtlUnwind
EnterCriticalSection
GetConsoleOutputCP
GetCPInfo
RaiseException

rpcrt4

RpcStringFreeA

shlwapi

SHCreateStreamOnFileW
SHCreateStreamOnFileEx
PathAppendA
PathIsContentTypeA
PathIsFileSpecA
PathCreateFromUrlW

Sections

.text
Size: 141KB - Virtual size: 268KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 142KB - Virtual size: 141KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy