b20431da56d78c2c7bc658ce1e5bcbe4d736e187bdf96f289cc1c116cd1a6ac4 | Triage

Submit
Reports

Overview

overview

8

Static

static

b20431da56...c4.exe

windows7-x64

8

b20431da56...c4.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

b20431da56d78c2c7bc658ce1e5bcbe4d736e187bdf96f289cc1c116cd1a6ac4.exe

Resource

win7-20220812-en

discovery persistence spyware stealer upx

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

b20431da56d78c2c7bc658ce1e5bcbe4d736e187bdf96f289cc1c116cd1a6ac4.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

b20431da56d78c2c7bc658ce1e5bcbe4d736e187bdf96f289cc1c116cd1a6ac4
Size

815KB
MD5

6e8b468ea35cf4b766bdd8673e0dbae5
SHA1

306c216b2d463d28349f1d82ed055b9c730ab8a3
SHA256

b20431da56d78c2c7bc658ce1e5bcbe4d736e187bdf96f289cc1c116cd1a6ac4
SHA512

7f9292298c286e8a1fdeef5375a06a0e56785fa16eb67c59f3f5c7b4c77e0f02a36d04fd2bbcd1566a58de8193a9fed742124ddb7b3bff2bb9f52553bf7c864f
SSDEEP

24576:vHnM9Gxn5lf/n0HQIhaGYNt0TK2uIo2ma4:vHK65lfP07haGYNuTKH53

Score

N/A

Malware Config

Signatures

Files

b20431da56d78c2c7bc658ce1e5bcbe4d736e187bdf96f289cc1c116cd1a6ac4
.exe windows x86

d63bd8a0afee22e78e23489938818443

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
LocalFree
FreeEnvironmentStringsA
UnmapViewOfFile
lstrlenA
GlobalUnlock
FindAtomA
LoadLibraryExW
HeapCreate
FindClose
ExitProcess
TlsGetValue
GetACP
HeapDestroy
CreateFileA
SetLastError
CreateMutexA
MapViewOfFile
SetupComm
GetModuleHandleA

user32

DefWindowProcW
CopyRect
GetIconInfo
IsWindow
GetDlgItem
CallWindowProcA
CheckRadioButton
GetDC
DrawMenuBar
DispatchMessageA
FillRect
GetFocus
DrawEdge
MessageBoxA

uxtheme

GetThemeRect
GetThemeSysInt
DrawThemeIcon
DrawThemeEdge
DrawThemeText

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy