425865dbf8ac158e179e918096094b6bd4be10b38caf8cb0649726008870090f | Triage

Submit
Reports

Overview

overview

Static

static

425865dbf8...0f.exe

windows7-x64

425865dbf8...0f.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

425865dbf8ac158e179e918096094b6bd4be10b38caf8cb0649726008870090f.exe

Resource

win7-20220812-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

425865dbf8ac158e179e918096094b6bd4be10b38caf8cb0649726008870090f.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

425865dbf8ac158e179e918096094b6bd4be10b38caf8cb0649726008870090f
Size

112KB
MD5

0c5a95cdba81644fb7f3e3666ed56870
SHA1

ce3156222eb7a46791f5ebf2956232f2484e8039
SHA256

425865dbf8ac158e179e918096094b6bd4be10b38caf8cb0649726008870090f
SHA512

15ba36d286926b08f35a0d3c5e31590fba4f069c8bf138b03db23b2534ce52ccdb3c6b8af0e7dd17715336fbcf33ac0c15bd30d7b471c504a7f857899e4d8092
SSDEEP

3072:ivRmXXzmalmIaLzuErnJ8m3+0uCJ70pBHBOT:PaalFaLzJLJ8m3jJ4fHBO

Score

N/A

Malware Config

Signatures

Files

425865dbf8ac158e179e918096094b6bd4be10b38caf8cb0649726008870090f
.exe windows x86

6f23b8069ceec632fc3e15f5aec68b7e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
GetPrivateProfileStringA
GetLocalTime
CreateWaitableTimerA
IsValidCodePage
GetLastError
ReadFile
lstrcmpiA
SetLastError
HeapCreate
GetDriveTypeA
GetLogicalDrives
CreateNamedPipeA
GetStdHandle
EndUpdateResourceA
GetBinaryTypeA
GetModuleHandleA
SetStdHandle
lstrcatW
GetExitCodeProcess
SetPriorityClass
GetConsoleTitleW
TlsAlloc

netshell

HrGetIconFromMediaType
HrLaunchConnectionEx
DllGetClassObject
NcFreeNetconProperties

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 105KB - Virtual size: 105KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.adata
Size: 1024B - Virtual size: 516B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy