af0c21d8e0da7d02911219d247bfb9c541cb5c0066d9373b2a6f8291c1a90003 | Triage

Submit
Reports

Overview

overview

Static

static

af0c21d8e0...03.exe

windows7-x64

af0c21d8e0...03.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

af0c21d8e0da7d02911219d247bfb9c541cb5c0066d9373b2a6f8291c1a90003.exe

Resource

win7-20220812-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

af0c21d8e0da7d02911219d247bfb9c541cb5c0066d9373b2a6f8291c1a90003.exe

Resource

win10v2004-20220812-en

pony collection discovery rat spyware stealer

windows10-2004-x64

8 signatures

150 seconds

General

Target

af0c21d8e0da7d02911219d247bfb9c541cb5c0066d9373b2a6f8291c1a90003
Size

150KB
MD5

ab73f23d220fc850fc078094ac636240
SHA1

333c4808dbdb01b18abd88cf4fb8610557a5ddf2
SHA256

af0c21d8e0da7d02911219d247bfb9c541cb5c0066d9373b2a6f8291c1a90003
SHA512

fe37f3104a06b8c9144ff78c392fce27e80454803a80ff21f22fe62a62d529465015d89b121aa876e1819a5abf35b950abb786259a7d077e7ba3a16be77ecf6a
SSDEEP

3072:QUE+OOn8qbiiDE6j4eUDs+fE2mQrkh95QY:QUZOAMiwQnXiE2mQYD5r

Score

N/A

Malware Config

Signatures

Files

af0c21d8e0da7d02911219d247bfb9c541cb5c0066d9373b2a6f8291c1a90003
.exe windows x86

907d2625d1551f574d964465b9b7257c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetLastError
ReadConsoleA
CreateDirectoryW
GetStartupInfoA
CreateHardLinkA
LoadLibraryA
GetPriorityClass
VirtualProtect
SetLastError
GetFileSize
Sleep
MapViewOfFile
GetTickCount
DeleteFileW
GetProcessHeap
CreateMutexW
HeapDestroy
CreateSemaphoreA
CreateFileA
OpenSemaphoreA
GetLocalTime
SetEvent
GetStdHandle
HeapSize
GetFileAttributesA

dsprop

DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer
DllUnregisterServer

serialui

drvGetDefaultCommConfigW
drvSetDefaultCommConfigW
drvSetDefaultCommConfigA
drvGetDefaultCommConfigA

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 143KB - Virtual size: 142KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy