77b666a67400ff8e01f5f516d08e3f0e7640c01b7a57e153a01417f196bb861b | Triage

Submit
Reports

Overview

overview

Static

static

77b666a674...1b.exe

windows7-x64

77b666a674...1b.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

77b666a67400ff8e01f5f516d08e3f0e7640c01b7a57e153a01417f196bb861b.exe

Resource

win7-20220812-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

77b666a67400ff8e01f5f516d08e3f0e7640c01b7a57e153a01417f196bb861b.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

77b666a67400ff8e01f5f516d08e3f0e7640c01b7a57e153a01417f196bb861b
Size

112KB
MD5

97381c4553974712d1c14063d74eecc4
SHA1

e9a17bb8351e6ad2f1450104a3a27e53070066fd
SHA256

77b666a67400ff8e01f5f516d08e3f0e7640c01b7a57e153a01417f196bb861b
SHA512

c33472f4af157e6819b77b69ae58ab481336232f71c45eea08db473155bf17e3a50cbb8adc1aec6b9ace29f21bf1bb762c99e294df42cc810785c2162947fd7c
SSDEEP

3072:byP1y4KIZYXRoJCJl97SF9AHRRyKLhn9xz:mtJ1Zeoml2W+Kt

Score

N/A

Malware Config

Signatures

Files

77b666a67400ff8e01f5f516d08e3f0e7640c01b7a57e153a01417f196bb861b
.exe windows x86

c8fd7b7086248b51ab77e067423bbf61

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapCreate
ResetEvent
WaitForSingleObject
CloseHandle
FindClose
DeleteFileA
SetLastError
GetConsoleTitleW
GetLocalTime
GetEnvironmentVariableW
OpenProcess
CreateMutexA
GetFileAttributesA
GetStartupInfoW
GetModuleHandleA
HeapSize
CreateFileA
GetTickCount
ExitProcess
GetCurrentDirectoryA
WaitForMultipleObjects
GetCommandLineW
GetStdHandle
Sleep
RemoveDirectoryW

user32

MessageBoxA
GetClassInfoA
GetSysColor
PeekMessageA
CallWindowProcW
GetWindowLongA
GetDC
DispatchMessageW
DispatchMessageW
GetDC
FillRect
GetDC
FindWindowW

vbajet32

VBAGetExprSrv
VBAGetExprSrv
VBAGetExprSrv
VBAGetExprSrv

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 10B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 106KB - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy