b1177f0f0f173912ea475bc86ee508093d214b60cc133246968dae1b28075c58 | Triage

Submit
Reports

Overview

overview

8

Static

static

b1177f0f0f...58.exe

windows7-x64

8

b1177f0f0f...58.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

b1177f0f0f173912ea475bc86ee508093d214b60cc133246968dae1b28075c58.exe

Resource

win7-20220901-en

discovery persistence spyware stealer upx

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

b1177f0f0f173912ea475bc86ee508093d214b60cc133246968dae1b28075c58.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

b1177f0f0f173912ea475bc86ee508093d214b60cc133246968dae1b28075c58
Size

810KB
MD5

ea074a81edcc9c698178587e21233b21
SHA1

6970ad113b15c43250d84a24a456a91204bfe982
SHA256

b1177f0f0f173912ea475bc86ee508093d214b60cc133246968dae1b28075c58
SHA512

cdb15001eaba1e34567389971c354f01f00c1e0390c054dc89eec9af121c45d551e32c655662b10aa824fb1bc8ab691a171b37abf5bc5a77052a9c5de1bbe9c2
SSDEEP

24576:s5exkPr/w3ReUHg9Kt762pI0M88pbQfV6qh6WOwT:sQxkU3Ye1uVMMWOw

Score

N/A

Malware Config

Signatures

Files

b1177f0f0f173912ea475bc86ee508093d214b60cc133246968dae1b28075c58
.exe windows x86

22049f9f34d3df79669abad61d2a4a47

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MapViewOfFile
GetTickCount
ReadFile
GetDriveTypeA
GetModuleHandleW
ExitThread
FindVolumeClose
GlobalFree
GetPrivateProfileIntA
FindAtomW
GetFileAttributesW
CreateFileA
CloseHandle
lstrlenA
LocalFree
GetComputerNameA
GetLocalTime
TlsGetValue
VirtualAlloc
FreeConsole

user32

GetCaretPos
DispatchMessageA
EndDialog
CreateWindowExA
GetDlgItem
DrawStateA
FillRect
DestroyCaret
GetMenu
CloseWindow
GetClientRect
GetClassInfoA
CallWindowProcA

clbcatq

ComPlusMigrate
ComPlusMigrate
DllGetClassObject
ComPlusMigrate
ComPlusMigrate

gpedit

DllGetClassObject

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 801KB - Virtual size: 800KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy