6ab430e27228071fa0c080556f2de0b32d4cd2a5c5999ab5b7da0c1a52bf7921 | Triage

Submit
Reports

Overview

overview

Static

static

6ab430e272...21.exe

windows7-x64

6ab430e272...21.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

6ab430e27228071fa0c080556f2de0b32d4cd2a5c5999ab5b7da0c1a52bf7921.exe

Resource

win7-20220812-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

6ab430e27228071fa0c080556f2de0b32d4cd2a5c5999ab5b7da0c1a52bf7921.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

6ab430e27228071fa0c080556f2de0b32d4cd2a5c5999ab5b7da0c1a52bf7921
Size

119KB
MD5

4861e9d97e921d8cd40b54c26e574b00
SHA1

98c55e83340ac76ac55e36e7424346d777c8d1da
SHA256

6ab430e27228071fa0c080556f2de0b32d4cd2a5c5999ab5b7da0c1a52bf7921
SHA512

ef3d7c986f0efecc21b5ef4ab3c2141355bd51271849582672410ae6fbb8edec6e18695889aad45a7807a330371b35675954d37cfe6f9766b252bf64a637f913
SSDEEP

1536:4ayG9M2Hrfjssao42dNO9U602G6IAzcCoazm94UG2EV9UqzHE3VBUvZ3aFJ03T:4ayGHakdN4X0p6ICcC306+BxFe

Score

N/A

Malware Config

Signatures

Files

6ab430e27228071fa0c080556f2de0b32d4cd2a5c5999ab5b7da0c1a52bf7921
.exe windows x86

935b0db2b4f13a92e8bf5b1ef4178413

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetCurrentDirectoryA
WriteConsoleW
SetEnvironmentVariableA
DeleteFileA
DeleteFileA
CreateMailslotW
GetShortPathNameW
GetStringTypeW
CreateFileMappingW
GetACP
VirtualAlloc
Heap32First
GetVersion
GetConsoleAliasW
SetEndOfFile
Heap32Next
GetModuleHandleW
LoadLibraryA
DeleteFileA
SetFilePointer
GetStringTypeW
GetProcessHeap
GetConsoleTitleA

msoeacct

DllGetClassObject
ValidEmailAddress
DllCanUnloadNow
GetDllMajorVersion

Sections

.text
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 110KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.avr
Size: 1024B - Virtual size: 544B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy