ae5ce74bd5f588201ca6371ecdbe91b6f5f09c2fa2c155b14d7e4f48995b6c89 | Triage

Submit
Reports

Overview

overview

Static

static

ae5ce74bd5...89.exe

windows7-x64

ae5ce74bd5...89.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

ae5ce74bd5f588201ca6371ecdbe91b6f5f09c2fa2c155b14d7e4f48995b6c89.exe

Resource

win7-20220812-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

ae5ce74bd5f588201ca6371ecdbe91b6f5f09c2fa2c155b14d7e4f48995b6c89.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

ae5ce74bd5f588201ca6371ecdbe91b6f5f09c2fa2c155b14d7e4f48995b6c89
Size

109KB
MD5

7b8efd039755c4a748c68bbed5c9b5a3
SHA1

5648cc68b4c0dfe0e234038ede7fd9df7e772f7e
SHA256

ae5ce74bd5f588201ca6371ecdbe91b6f5f09c2fa2c155b14d7e4f48995b6c89
SHA512

6fee53315fa8449f3b6bf5afd27893c0d203fa9ab9309bab8bd05de0b933060131edb2b06a304420b10a070fd1a0be19b9bcc1b4995b6b0ba908284a31e2f569
SSDEEP

1536:lt5uZasbO6E8nR/pUpk2Yg7I+cf8Q6yxsxEGNiTu1rj+eKLdC9Ye5S0:laZasbMe2r7IL8bUsqGNJSxUWev

Score

N/A

Malware Config

Signatures

Files

ae5ce74bd5f588201ca6371ecdbe91b6f5f09c2fa2c155b14d7e4f48995b6c89
.exe windows x86

029cbcaaa7974c9010bb922fe41b8751

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapFree
ReadFile
GetFileAttributesA
GetCurrentDirectoryW
GetFileTime
GetCommandLineW
Sleep
GetModuleHandleA
WaitForSingleObject
SetLastError
IsBadReadPtr
SuspendThread
GetFileType
CloseHandle
SetLastError
SetFileAttributesW
HeapCreate
GetDriveTypeA
GetCommandLineA
EnterCriticalSection
GlobalLock
GetEnvironmentVariableW
ExitProcess
LocalSize
MapViewOfFile

uxtheme

GetWindowTheme
OpenThemeData
GetThemeTextMetrics
CloseThemeData
IsThemeActive
SetWindowTheme
DrawThemeBackground
GetThemeEnumValue
CloseThemeData
GetThemeTextExtent
GetThemeBool
DrawThemeEdge
GetThemeColor

deskmon

DllCanUnloadNow
DllCanUnloadNow
DllCanUnloadNow
DllCanUnloadNow

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 10B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 102KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy