0fe96c498873c13c74e8a6d6d2aea2f39db493629db3dce6aca284fee6cf5905 | Triage

Submit
Reports

Overview

overview

8

Static

static

0fe96c4988...05.exe

windows7-x64

8

0fe96c4988...05.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

0fe96c498873c13c74e8a6d6d2aea2f39db493629db3dce6aca284fee6cf5905.exe

Resource

win7-20221111-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

0fe96c498873c13c74e8a6d6d2aea2f39db493629db3dce6aca284fee6cf5905.exe

Resource

win10v2004-20220901-en

discovery persistence spyware stealer upx

windows10-2004-x64

5 signatures

150 seconds

General

Target

0fe96c498873c13c74e8a6d6d2aea2f39db493629db3dce6aca284fee6cf5905
Size

1.1MB
MD5

e25460c45e4cbf6f640ac9af5cb781e5
SHA1

875f1ab2dce43f0f8e8fcf35b6bbec331bfab64d
SHA256

0fe96c498873c13c74e8a6d6d2aea2f39db493629db3dce6aca284fee6cf5905
SHA512

08b593ae32fec0b4ab04f5f11a8a83e5253670848ba02b3a9ecf6bbc6c87b7fdbe861d047c93c0ef65a6d061c95ad7c123ca406ec245df4f5cc6afd355794d18
SSDEEP

24576:CzKmBZ0nMvQFId2ASpK4WU2RuQ0pAKd2dBYFc0ghtCc:rmBjQF2vSBWjY3AKd2dBYFjSCc

Score

N/A

Malware Config

Signatures

Files

0fe96c498873c13c74e8a6d6d2aea2f39db493629db3dce6aca284fee6cf5905
.exe windows x86

7a32f7f76d31a609bd7af0db3ef86922

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MoveFileW
WriteFile
SetErrorMode
ReadFile
DeleteFileW
SetUnhandledExceptionFilter
TerminateProcess
GetCurrentThreadId
GetLastError
CreateFileW
GetProcAddress
GetModuleHandleA
QueryPerformanceCounter
GetModuleHandleW
CreateFileA
ExitProcess
CloseHandle
lstrcpyA

user32

GetWindowLongW
EndDialog
DialogBoxParamW
CheckDlgButton
LoadImageW
SetWindowLongW
IsDlgButtonChecked
GetDlgItemTextW
SetDlgItemTextW
LoadCursorW
LoadStringW
wsprintfW
EnableWindow
GetDlgItem
SetFocus
SetCursor

advapi32

RegOpenKeyExA
RegDeleteKeyA
RegQueryValueExW
RegSetValueExA
RegCreateKeyExA
RegQueryInfoKeyA
RegSetValueExW
RegCloseKey
RegOpenKeyExW

msvcrt

atol

setupapi

SetupDiGetDeviceInterfaceDetailW

Sections

.text
Size: 392KB - Virtual size: 390KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 112KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 640KB - Virtual size: 2.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy