b96251eabf2971eb18d63db4b47b7529fd38dbb4231d67220015b9743c1c9e1d | Triage

Submit
Reports

Overview

overview

Static

static

b96251eabf...1d.exe

windows7-x64

b96251eabf...1d.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

b96251eabf2971eb18d63db4b47b7529fd38dbb4231d67220015b9743c1c9e1d.exe

Resource

win7-20221111-en

persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

b96251eabf2971eb18d63db4b47b7529fd38dbb4231d67220015b9743c1c9e1d.exe

Resource

win10v2004-20221111-en

persistence spyware stealer upx

windows10-2004-x64

4 signatures

150 seconds

General

Target

b96251eabf2971eb18d63db4b47b7529fd38dbb4231d67220015b9743c1c9e1d
Size

167KB
MD5

77c0fcae35e2772c9bcdbdd2a0ca83c1
SHA1

e5605670ea6d4633c8df92d0887b4fe966042dde
SHA256

b96251eabf2971eb18d63db4b47b7529fd38dbb4231d67220015b9743c1c9e1d
SHA512

3aec9444141e081b94e5dac738590f4b912de0fcdc2bcbe35fbf6394437a9d83965b238f77cd4c97034d722e389fa710f03a754c5a696d178504e6c9593e1ed2
SSDEEP

3072:2KoEsZbwBwmGTHF6xk3AEmqhrdYqJhjBuIfuXXs+nVapmwjDUaYCn0HtXGr:TsXLl6YA82qJhQguHsGapJf7/

Score

N/A

Malware Config

Signatures

Files

b96251eabf2971eb18d63db4b47b7529fd38dbb4231d67220015b9743c1c9e1d
.exe windows x86

bf5382ba444b4868a378e7f7f6067b41

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapFree
HeapCreate
HeapReAlloc
GetSystemTimeAsFileTime
SetLastError
HeapAlloc
GetCurrentProcessId
VirtualFree
QueryPerformanceCounter
IsBadWritePtr
EnumSystemLanguageGroupsW
GetWriteWatch
TlsAlloc
VirtualAlloc
VirtualQuery
HeapDestroy
TlsFree

ole32

CoTaskMemFree
ProgIDFromCLSID
StringFromCLSID

winmm

mciSendCommandA
sndPlaySoundA

user32

LoadStringA
GetWindow
LoadImageA
CreateWindowExA
GetDlgItem
DestroyIcon
SetWindowTextA
GetParent

oleacc

CreateStdAccessibleObject
AccessibleChildren

msimg32

AlphaBlend
TransparentBlt

Sections

.text
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 397KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 99KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy