9149551bd9f849da928f24799e8590c14d098c20ba9aa51baa37d979a65eae39 | Triage

Submit
Reports

Overview

overview

8

Static

static

9149551bd9...39.exe

windows7-x64

8

9149551bd9...39.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

9149551bd9f849da928f24799e8590c14d098c20ba9aa51baa37d979a65eae39.exe

Resource

win7-20220812-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

9149551bd9f849da928f24799e8590c14d098c20ba9aa51baa37d979a65eae39.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

9149551bd9f849da928f24799e8590c14d098c20ba9aa51baa37d979a65eae39
Size

811KB
MD5

8f37619fb670777f1fd244737764726c
SHA1

e9d3c06452ee7dca1040f5594f1af9e445401a9e
SHA256

9149551bd9f849da928f24799e8590c14d098c20ba9aa51baa37d979a65eae39
SHA512

f4f5f2831101c33d6beceac28afb7727af7eb3372b92c85ae0596c6d1958b2746315bc505f9fa8426dcae7dc2b3dd90dd66526e1f74e9eff4c7c03f13b1b5dfa
SSDEEP

24576:G8XzacXN9WxYBXkZAmDHAdEjjDkHjqC4r5nriJK1:nXpexY02CAdwkHurX1

Score

N/A

Malware Config

Signatures

Files

9149551bd9f849da928f24799e8590c14d098c20ba9aa51baa37d979a65eae39
.exe windows x86

d142b775ecd8862450b5d39f679fe4a7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TlsGetValue
GetDriveTypeA
DeleteFileA
GetTickCount
EnterCriticalSection
RemoveDirectoryA
CloseHandle
GetStartupInfoA
InitializeCriticalSection
GetLocalTime
GetConsoleMode
GetFileSize
CreateDirectoryW
lstrlenW
Sleep
FindClose
WriteConsoleW
GetCommandLineW
GetModuleFileNameA
VirtualProtectEx
GetCalendarInfoW
GetModuleHandleA
CreateFileA
LeaveCriticalSection
GlobalFree

user32

wsprintfA
PeekMessageA
GetWindowDC
IsWindowEnabled
EqualRect
IsWindowVisible
GetWindowLongA
IsWindow
FillRect
GetSysColor
MessageBoxA
GetWindowLongA
DispatchMessageA

cryptdlg

CertTrustCertPolicy
CertTrustCleanup
CertConfigureTrustW
CertConfigureTrustA

advapi32

IsValidSid

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 800KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy