42dd248a627fd42e62494222333d7926337a3435edd29fc7f1980d22b8adf060 | Triage

Submit
Reports

Overview

overview

8

Static

static

42dd248a62...60.exe

windows7-x64

8

42dd248a62...60.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

42dd248a627fd42e62494222333d7926337a3435edd29fc7f1980d22b8adf060.exe

Resource

win7-20220812-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

42dd248a627fd42e62494222333d7926337a3435edd29fc7f1980d22b8adf060.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

42dd248a627fd42e62494222333d7926337a3435edd29fc7f1980d22b8adf060
Size

871KB
MD5

2c5b2172894d15d58e21a8ea1175e210
SHA1

068a01e6901705c984e7619f5ac725cb2a807021
SHA256

42dd248a627fd42e62494222333d7926337a3435edd29fc7f1980d22b8adf060
SHA512

7535e2c5b5bc157e5b2bccce47053b909e92b299771c43cee32d5a8de0972da65f820d3031f047a439737f99eaa3d4b2ead0976939854bbf735e2f71010aa9ae
SSDEEP

24576:YADLm8H9cSejGy482o1nIILYZIf1gjZbd1ndEjN:FDS8HWSejGyX2o1nvLejZb/ndwN

Score

N/A

Malware Config

Signatures

Files

42dd248a627fd42e62494222333d7926337a3435edd29fc7f1980d22b8adf060
.exe windows x86

53722dcda2d9066526b4409589c2fe2a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenA
IsDebuggerPresent
GetACP
ReleaseMutex
SuspendThread
TlsGetValue
GetModuleHandleA
GetDriveTypeA
HeapCreate
GetModuleFileNameA
TlsAlloc
GetStartupInfoA
CreateFileMappingA
IsBadStringPtrA
ResumeThread
CancelIo
PulseEvent
DeviceIoControl
DeleteFileA
CreateFileA

user32

GetWindowLongA
DestroyWindow
DispatchMessageA
CallWindowProcW
GetIconInfo
FindWindowW
IsZoomed
DrawTextW
DestroyMenu
PeekMessageA
DispatchMessageA
LoadImageA
IsWindow

amstream

DllRegisterServer
DllRegisterServer
DllRegisterServer
DllRegisterServer

cryptui

LocalEnroll

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 863KB - Virtual size: 862KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy