61990df93ab76f34ece2d40f8b51acadb7a85a001da460767bc47b3126e24391 | Triage

Submit
Reports

Overview

overview

8

Static

static

61990df93a...91.exe

windows7-x64

8

61990df93a...91.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

61990df93ab76f34ece2d40f8b51acadb7a85a001da460767bc47b3126e24391.exe

Resource

win7-20221111-en

discovery persistence spyware stealer upx

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

61990df93ab76f34ece2d40f8b51acadb7a85a001da460767bc47b3126e24391.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

61990df93ab76f34ece2d40f8b51acadb7a85a001da460767bc47b3126e24391
Size

815KB
MD5

648ed976884f77aed6b3bcb6ec3e12ad
SHA1

874f4f38b109c40afb2e9a3a73e4d3ad63c9e34a
SHA256

61990df93ab76f34ece2d40f8b51acadb7a85a001da460767bc47b3126e24391
SHA512

5624cbe7ecdb52e64b8361a927b6c59c9e622ea608f8292040489edda666507eb5643b171db0c4752767c1c9f3700f54f843caa73ced8a1042faaf93563cbaca
SSDEEP

24576:hf171+l3FNO2XE6YVVceBJ4FvGX3fdF14eVx9d4x6F25TvokSI:1y7O16Y3cW6FvalX9d4x6Fc0k

Score

N/A

Malware Config

Signatures

Files

61990df93ab76f34ece2d40f8b51acadb7a85a001da460767bc47b3126e24391
.exe windows x86

1213bd429e8dc84028b3e059f8d44d82

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalUnlock
WaitForMultipleObjects
GetModuleHandleA
GetConsoleAliasA
HeapCreate
GetLastError
GetCalendarInfoA
CreateFileMappingA
GetACP
LocalLock
LoadLibraryExA
FreeEnvironmentStringsA
CreateFileA
LocalFree
FindAtomA
GetConsoleCP
TlsGetValue
Sleep
CloseHandle
FindClose

user32

IsWindow
DrawEdge
GetDC
DrawTextA
DispatchMessageA
CallWindowProcA
GetMessageA
CascadeWindows
GetIconInfo
CreateDialogParamA
DefWindowProcA
SetFocus
GetDlgItem
MessageBoxA

msasn1

ASN1BERDecCheck
ASN1BEREncLength
ASN1BERDecSkip
ASN1BERDecEoid
ASN1BERDecNull

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy