ac1c468723fd25dc47053aa7021437d89ea517b1998ff7fa19f0463fee73fb4c | Triage

Submit
Reports

Overview

overview

8

Static

static

ac1c468723...4c.exe

windows7-x64

8

ac1c468723...4c.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

ac1c468723fd25dc47053aa7021437d89ea517b1998ff7fa19f0463fee73fb4c.exe

Resource

win7-20221111-en

discovery persistence spyware stealer upx

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

ac1c468723fd25dc47053aa7021437d89ea517b1998ff7fa19f0463fee73fb4c.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

ac1c468723fd25dc47053aa7021437d89ea517b1998ff7fa19f0463fee73fb4c
Size

784KB
MD5

402f0ee69bdc9b4df73ce5f99ad6fd4e
SHA1

d239a01adcb5a61df2f21601142be660a1bab63b
SHA256

ac1c468723fd25dc47053aa7021437d89ea517b1998ff7fa19f0463fee73fb4c
SHA512

f06ff79fb59a7be9cd34c4a114f6822e71a2b160f448438dc0f56632acfa24acd3ceec7f221b3cb8d863fceb5d2ea65710902e9be97466ae600ee949ec9d97f5
SSDEEP

24576:vuRMrvlgBBNXuOo1dz8ZDRwqBkFMNyWlvMT:mRMDlgFez1h8ZDC+Ll

Score

N/A

Malware Config

Signatures

Files

ac1c468723fd25dc47053aa7021437d89ea517b1998ff7fa19f0463fee73fb4c
.exe windows x86

4e4b95e84a9120b9ab9595048f90a565

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsBadStringPtrW
GetCurrentProcessId
CloseHandle
ReleaseMutex
LoadLibraryW
HeapCreate
GetDriveTypeA
GlobalFlags
GetFileTime
FindClose
GetEnvironmentVariableW
ReleaseMutex
CreateEventW
WriteFile
lstrlenW
GetPrivateProfileStringA
GetCurrentThreadId
GlobalFree
LocalFree
InitializeCriticalSection

user32

EndDialog
GetClassInfoA
IsWindow
DispatchMessageA
CallWindowProcW
GetKeyboardType
DrawStateW
CreateWindowExA
SetFocus
GetSysColor
GetSysColor
GetClientRect
GetCursorInfo

ntlanman

NPGetConnection
NPGetConnection
NPGetConnection
NPGetConnection
NPGetConnection

advapi32

InitializeSid

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 774KB - Virtual size: 773KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy