8cc54c17b760b39d43833a6e3429820e8ae40335e73728eff2f5e7ba85517abe | Triage

Submit
Reports

Overview

overview

8

Static

static

8cc54c17b7...be.exe

windows7-x64

8

8cc54c17b7...be.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

8cc54c17b760b39d43833a6e3429820e8ae40335e73728eff2f5e7ba85517abe.exe

Resource

win7-20220812-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

8cc54c17b760b39d43833a6e3429820e8ae40335e73728eff2f5e7ba85517abe.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

8cc54c17b760b39d43833a6e3429820e8ae40335e73728eff2f5e7ba85517abe
Size

811KB
MD5

79a542a65ab414da4c9eec0d58f53ca1
SHA1

0d141a3c5a5e3571644e761e6923161eb9a517f5
SHA256

8cc54c17b760b39d43833a6e3429820e8ae40335e73728eff2f5e7ba85517abe
SHA512

84ff503b11568bdfd1945c579eca7774f89879ee14eeb084bccd0ef13328b77470ad19a3d4d4cdc7f7b90e0615b7bd77360072a21027323016c77fc981550bec
SSDEEP

12288:x89bbFJxO9PViXWtug5rkYN47sFW+3XOwHiP+4r8P5AJ6utJQ:SbFC9QYTrkbwW+nLHiP+X6Jn

Score

N/A

Malware Config

Signatures

Files

8cc54c17b760b39d43833a6e3429820e8ae40335e73728eff2f5e7ba85517abe
.exe windows x86

dafd6d15c29ee4b951793341093a5800

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleTitleW
Sleep
GetFileSize
GetCalendarInfoA
DeleteFileA
EnterCriticalSection
CancelIo
WriteConsoleW
lstrlenW
GetStartupInfoA
TlsGetValue
RemoveDirectoryA
CloseHandle
CancelIo
CreateDirectoryW
CreateFileA
GetModuleHandleA
GetCommandLineW
GetTickCount
GlobalFree
ReadFile
VirtualProtectEx
InitializeCriticalSection
LeaveCriticalSection
GetModuleFileNameA

user32

IsWindow
FillRect
wsprintfA
EqualRect
GetWindowDC
DispatchMessageA
GetWindowLongA
GetWindowLongA
MessageBoxA
IsWindowEnabled
GetSysColor
IsWindowVisible
PeekMessageA

cryptdlg

CertConfigureTrustA
CertTrustCertPolicy
CertTrustCleanup
CertTrustInit

advapi32

RegCloseKey

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 800KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy