881efdf8e2e470febe60f7df2f03b9e46b3e15796dc37db6df2a994c96d94ec9 | Triage

Submit
Reports

Overview

overview

Static

static

881efdf8e2...c9.exe

windows7-x64

881efdf8e2...c9.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

881efdf8e2e470febe60f7df2f03b9e46b3e15796dc37db6df2a994c96d94ec9.exe

Resource

win7-20221111-en

persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

881efdf8e2e470febe60f7df2f03b9e46b3e15796dc37db6df2a994c96d94ec9.exe

Resource

win10v2004-20220901-en

persistence spyware stealer upx

windows10-2004-x64

4 signatures

150 seconds

General

Target

881efdf8e2e470febe60f7df2f03b9e46b3e15796dc37db6df2a994c96d94ec9
Size

164KB
MD5

abf3790e61311357a9abb060f86d8d09
SHA1

c7228ee3f7f8db8a9454476642a19fc19371535f
SHA256

881efdf8e2e470febe60f7df2f03b9e46b3e15796dc37db6df2a994c96d94ec9
SHA512

7c8f3a86ddfb4b93427a90ecc6b4bf15f4dd098450e17edae950fd6be116777b2ad73d6e8a9e1c1950366962242ea0865ec4de07aec82a6b9e1d654cb7bcf625
SSDEEP

3072:jVO3EGwMd/sjVv9wHpqmpwxww8RVD6fuCQH0xLNVhv7E8iqy0l1OMAx4x2F:BkEGbd/sjxPww4VDFC57v7v3X4

Score

N/A

Malware Config

Signatures

Files

881efdf8e2e470febe60f7df2f03b9e46b3e15796dc37db6df2a994c96d94ec9
.exe windows x86

926a8198f5953b7063b32d305bfabafe

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapFree
SetUnhandledExceptionFilter
GetOEMCP
GetStringTypeA
LoadLibraryA
InterlockedExchange
GetStringTypeW
GetCurrentProcess
IsDebuggerPresent
RtlUnwind
EnumResourceTypesW
LCMapStringW
LZCopy
VirtualAlloc
GetACP
WriteFile
LCMapStringA
GetCPInfo
GetLocaleInfoA

oleacc

GetOleaccVersionInfo
AccessibleObjectFromEvent

msimg32

TransparentBlt

Sections

.text
Size: 78KB - Virtual size: 78KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 404KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 83KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy