8837862cf0301b40b017f879352587c1e0d84812111e574aa25c0e00ee7816b2 | Triage

Submit
Reports

Overview

overview

Static

static

8837862cf0...b2.exe

windows7-x64

8837862cf0...b2.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

8837862cf0301b40b017f879352587c1e0d84812111e574aa25c0e00ee7816b2.exe

Resource

win7-20220812-en

pony discovery evasion persistence rat spyware stealer upx

windows7-x64

20 signatures

150 seconds

Behavioral task

behavioral2

Sample

8837862cf0301b40b017f879352587c1e0d84812111e574aa25c0e00ee7816b2.exe

Resource

win10v2004-20221111-en

pony discovery evasion persistence rat spyware stealer upx

windows10-2004-x64

22 signatures

150 seconds

General

Target

8837862cf0301b40b017f879352587c1e0d84812111e574aa25c0e00ee7816b2
Size

292KB
MD5

85da62278ada46b1d41c49d93269cc95
SHA1

329b0581c177ac25038d222c7f5de09abfe3a8bc
SHA256

8837862cf0301b40b017f879352587c1e0d84812111e574aa25c0e00ee7816b2
SHA512

cd5d9593b542948c01a55ec80d3d66b7e1b5fb44b4a47adfecf6858e09bbc356f1268daedb8eac9be5bf932d6f1639920adac1a7b2c58b7c7d098466ac39df92
SSDEEP

6144:tZNxk2p9caqTfsXV7iVBKgbvpvwIeisgGyxSJ84K7Z:tZvkKcNTEXe9vWIei3SJTK7Z

Score

N/A

Malware Config

Signatures

Files

8837862cf0301b40b017f879352587c1e0d84812111e574aa25c0e00ee7816b2
.exe windows x86

faabf79b1aacb24f57dac368c487c8bd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetACP
MultiByteToWideChar
WriteConsoleA
GetAtomNameW
RtlUnwind
GetTimeFormatA
GetCPInfo
SetStdHandle
GetConsoleOutputCP
HeapSize
EnumResourceNamesA
TlsGetValue
TlsSetValue
TlsAlloc
SetFilePointer
FindResourceA
GetOEMCP
VirtualAlloc
HeapReAlloc
GetDateFormatA
IsValidCodePage
GetLocaleInfoA
RaiseException

occache

FindControlClose

shell32

SHGetDataFromIDListW
SHGetPathFromIDListW
SHAppBarMessage
ShellExecuteExW
DragAcceptFiles
SHGetFileInfoW
SHGetDesktopFolder
ShellExecuteW
SHGetSpecialFolderLocation
SHGetMalloc
SHBrowseForFolderW
Shell_NotifyIconW

Sections

.text
Size: 135KB - Virtual size: 262KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 154KB - Virtual size: 154KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy