7ed438f9eebacc26dc4f35e18e55e435b085d6d8c8eceed4338ba01dcaf8df23 | Triage

Submit
Reports

Overview

overview

Static

static

7ed438f9ee...23.exe

windows7-x64

7ed438f9ee...23.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

7ed438f9eebacc26dc4f35e18e55e435b085d6d8c8eceed4338ba01dcaf8df23.exe

Resource

win7-20220901-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

7ed438f9eebacc26dc4f35e18e55e435b085d6d8c8eceed4338ba01dcaf8df23.exe

Resource

win10v2004-20221111-en

pony collection discovery rat spyware stealer

windows10-2004-x64

8 signatures

150 seconds

General

Target

7ed438f9eebacc26dc4f35e18e55e435b085d6d8c8eceed4338ba01dcaf8df23
Size

117KB
MD5

3986ae37cabdb1d66731b6c00589eef0
SHA1

336d7b6638422cb1d5fbb311b6f684710feecf0f
SHA256

7ed438f9eebacc26dc4f35e18e55e435b085d6d8c8eceed4338ba01dcaf8df23
SHA512

7ba97d6262a899740111b366af09b536a9fc7662bbc57e9994ce4046db31448b061a3c393657e1524822c290c3cda6c1add8c51ff82394e90a2c27a9f4e94637
SSDEEP

3072:9Yqt3sKHw6dWf3WfcUFKLOXgD5GdBxQOOo:hGKHw6SD35GdnQOO

Score

N/A

Malware Config

Signatures

Files

7ed438f9eebacc26dc4f35e18e55e435b085d6d8c8eceed4338ba01dcaf8df23
.exe windows x86

54655dbf93fc0dac06f35295928cba72

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStringTypeW
SetEnvironmentVariableA
WriteConsoleW
DeleteFileA
CreateSemaphoreW
GetACP
CreateMailslotA
GetStringTypeW
SetVolumeLabelW
FatalExit
GetConsoleAliasA
GetModuleHandleW
GetShortPathNameW
DeleteFileA
LoadLibraryA
GetConsoleTitleA
VirtualAlloc
DeleteFileA
SetCurrentDirectoryA
DeviceIoControl
InitializeCriticalSection
GetProcessHeap
CreateFileMappingW

mshtml

ShowHTMLDialog
MatchExactGetIDsOfNames
ShowModelessHTMLDialog
DllEnumClassObjects

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.orpc
Size: 109KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.avr
Size: 1024B - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy