b038b5b3d588566dd1b6a5b293a0a5661dc4e2d6ce19e7bb28a5a62fc13267ac | Triage

Submit
Reports

Overview

overview

7

Static

static

b038b5b3d5...ac.exe

windows7-x64

7

b038b5b3d5...ac.exe

windows10-2004-x64

6

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

b038b5b3d588566dd1b6a5b293a0a5661dc4e2d6ce19e7bb28a5a62fc13267ac.exe

Resource

win7-20220812-en

collection discovery spyware stealer

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

b038b5b3d588566dd1b6a5b293a0a5661dc4e2d6ce19e7bb28a5a62fc13267ac.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

3 signatures

150 seconds

General

Target

b038b5b3d588566dd1b6a5b293a0a5661dc4e2d6ce19e7bb28a5a62fc13267ac
Size

28KB
MD5

e6b9f5089b839305a770bb0b7e17e5cb
SHA1

426fc782db56cc3b9f020a322f33d33cb273cba4
SHA256

b038b5b3d588566dd1b6a5b293a0a5661dc4e2d6ce19e7bb28a5a62fc13267ac
SHA512

d535c0323d9360da674b2ec40d918029fdc49d6fdb6d28ad1afdeab355c5ad8439bf6ab319517a7e75b5ebedf05463a16d8e931d37c59a901b764604ff693de0
SSDEEP

768:4lTq3yxEyo02xHmWMhlW0P588ua73feDrZjMd:jMEy9OmWMhd58aUM

Score

N/A

Malware Config

Signatures

Files

b038b5b3d588566dd1b6a5b293a0a5661dc4e2d6ce19e7bb28a5a62fc13267ac
.exe windows x86

3099a569d56860de9cad7ea6cd38ac2b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
GetTickCount
GetStartupInfoA
HeapAlloc
SetConsoleCP
LoadLibraryExA
WriteFile
InterlockedCompareExchange
VirtualProtect
GetCurrentProcess
LocalFree
HeapCreate
GetModuleHandleA
WaitForSingleObject
FindFirstFileW
GetDriveTypeA
GetCommandLineA
GetLastError
GetACP
GetCurrentProcessId
GetProcessHeap
LoadLibraryA
GetOEMCP
UnhandledExceptionFilter
LocalAlloc
CompareStringW
TlsSetValue
ExitProcess
GetModuleHandleW
QueryPerformanceCounter
SetStdHandle
GetLocaleInfoA
GetCurrentThreadId
CreateFileW

user32

EnumChildWindows
ShowWindow
SetRect
SendMessageW
DispatchMessageA
EnableMenuItem
LoadIconA
ReleaseDC
SetWindowTextA
GetMessageW
DrawIconEx

ole32

IsValidPtrIn

advapi32

RegOpenKeyA
RegOpenKeyExW

msvcrt

memset
memmove
_XcptFilter

gdi32

SelectObject
CreateCompatibleDC

version

VerQueryValueW

lz32

LZDone

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 22KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 201KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy