953a3be36c2291489a2c18a7640b914a7b02b8cd4b912f00ffc263b7957ef07b | Triage

Submit
Reports

Overview

overview

7

Static

static

953a3be36c...7b.exe

windows7-x64

7

953a3be36c...7b.exe

windows10-2004-x64

7

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

953a3be36c2291489a2c18a7640b914a7b02b8cd4b912f00ffc263b7957ef07b.exe

Resource

win7-20220901-en

persistence spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

953a3be36c2291489a2c18a7640b914a7b02b8cd4b912f00ffc263b7957ef07b.exe

Resource

win10v2004-20220901-en

persistence spyware stealer

windows10-2004-x64

7 signatures

150 seconds

General

Target

953a3be36c2291489a2c18a7640b914a7b02b8cd4b912f00ffc263b7957ef07b
Size

1.4MB
MD5

041da3e635877536eb71d6ecfc62f451
SHA1

87d769d988ac948216fab29c254a6c1a1923a2a7
SHA256

953a3be36c2291489a2c18a7640b914a7b02b8cd4b912f00ffc263b7957ef07b
SHA512

1f0fb6d0732418a54b8111dda0aec353c7599eab8d72f827baad6002d60edcb72162bcd6f40d4d4b66bfa9bdda0f8e821e7ad717aa5490bc759bb0675f3fdcab
SSDEEP

24576:5iKKKKKSKKKKKKKKKKKKKKKTKKKKKKKKKKKKKK5KKKKKKKdjKKKKQHKKJzlufmxX:cKKKKKSKKKKKKKKKKKKKKKTKKKKKKKKH

Score

N/A

Malware Config

Signatures

Files

953a3be36c2291489a2c18a7640b914a7b02b8cd4b912f00ffc263b7957ef07b
.exe windows x86

058c67061fa724f62bfb5c98fe48b74e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

EVENT_SINK_GetIDsOfNames
ord588
MethCallEngine
ord699
EVENT_SINK_Invoke
ord516
ord517
ord518
ord519
ord552
ord553
ord660
ord662
ord667
Zombie_GetTypeInfo
ord669
ord592
ord700
ord595
ord598
ord520
ord709
ord525
ord632
EVENT_SINK_AddRef
ord527
ord529
DllFunctionCall
ord563
Zombie_GetTypeInfoCount
EVENT_SINK_Release
ord600
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord712
ord713
ord606
ord607
ord608
ord716
ord717
ord319
ProcCallEngine
ord535
ord644
ord537
ord645
ord570
ord648
ord573
ord681
ord685
ord578
ord100
ord610
ord320
ord612
ord321
ord616
ord617
ord618
ord619
ord542
ord650
ord545
ord546
ord581

Sections

.text
Size: 828KB - Virtual size: 827KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 580KB - Virtual size: 577KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy