4415a4da99f3fc52b9beb1ea9a79376b1aa527e1652322e555122801e577e6ac | Triage

Submit
Reports

Overview

overview

Static

static

4415a4da99...ac.exe

windows7-x64

4415a4da99...ac.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

4415a4da99f3fc52b9beb1ea9a79376b1aa527e1652322e555122801e577e6ac.exe

Resource

win7-20221111-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

4415a4da99f3fc52b9beb1ea9a79376b1aa527e1652322e555122801e577e6ac.exe

Resource

win10v2004-20220812-en

pony collection discovery rat spyware stealer

windows10-2004-x64

8 signatures

150 seconds

General

Target

4415a4da99f3fc52b9beb1ea9a79376b1aa527e1652322e555122801e577e6ac
Size

116KB
MD5

18b82b1b34dd76bac0484dc6eae48f20
SHA1

1a090954dbaae5d63f4681a25fb3fd2b3663b34d
SHA256

4415a4da99f3fc52b9beb1ea9a79376b1aa527e1652322e555122801e577e6ac
SHA512

8020bd41c2a804433cfd8db2dd4a59bbcfba1884695b899745db1de66587a5ccbb6c7bb691e20f8ce60f3b417c05b276c21bf7314c97a7ea6fe493625de11568
SSDEEP

3072:NkcYYyVfXM7Qka2ZobKi7BmMICrNufVQy:mH2Z1itm/QNudQ

Score

N/A

Malware Config

Signatures

Files

4415a4da99f3fc52b9beb1ea9a79376b1aa527e1652322e555122801e577e6ac
.exe windows x86

940a70894a905ddb38d81007b5a21b24

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleTitleA
DeleteFileA
GetModuleHandleA
SetFilePointer
SetCurrentDirectoryA
CreateMailslotW
GetShortPathNameW
WriteConsoleW
GetACP
GetStringTypeW
Heap32Next
GetStringTypeW
GetVersion
DeleteFileA
HeapFree
DeleteFileA
GetProcessHeap
GetExitCodeProcess
SetEnvironmentVariableA
CreateFileMappingW
HeapCreate
GetModuleHandleW
GetConsoleAliasW

mstscax

DllRegisterServer
DllUnregisterServer
DllGetTscCtlVer
DllCanUnloadNow

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 109KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 1024B - Virtual size: 544B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy