fbd371bc0ea04f5f6e0de507675e9d5ad6ae24aa24948d64716b89276bbc4a2d | Triage

Submit
Reports

Overview

overview

Static

static

fbd371bc0e...2d.exe

windows7-x64

fbd371bc0e...2d.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

fbd371bc0ea04f5f6e0de507675e9d5ad6ae24aa24948d64716b89276bbc4a2d.exe

Resource

win7-20220812-en

persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

fbd371bc0ea04f5f6e0de507675e9d5ad6ae24aa24948d64716b89276bbc4a2d.exe

Resource

win10v2004-20220901-en

persistence spyware stealer upx

windows10-2004-x64

4 signatures

150 seconds

General

Target

fbd371bc0ea04f5f6e0de507675e9d5ad6ae24aa24948d64716b89276bbc4a2d
Size

177KB
MD5

9c560eeaf8d5b292c68af0def756d51f
SHA1

8531c207f16cc5e780cea3401a781b39bd290ebf
SHA256

fbd371bc0ea04f5f6e0de507675e9d5ad6ae24aa24948d64716b89276bbc4a2d
SHA512

ea4c29e8d9b7fd32907f71412b221e8914b9e48a228cf9577d276620c453759239b65cf69b993037b93d421989c11300ab32183fd7b9124f7713e4ed7ad4d018
SSDEEP

3072:7J2sg/xi84Z9rVpXWFZk5aDsmWOZHL2CagC1PDxgjjNWLKSDhDjtGsw:7I/74Z9RpXWFu5wnZNIPtgjjNW2SDRG

Score

N/A

Malware Config

Signatures

Files

fbd371bc0ea04f5f6e0de507675e9d5ad6ae24aa24948d64716b89276bbc4a2d
.exe windows x86

de9dffbfcb903706b28536f4e67335a9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

OleSave
CoCreateInstance
StringFromGUID2
CoTaskMemFree
CoTaskMemAlloc
CoTaskMemRealloc

newdev

UpdateDriverForPlugAndPlayDevicesW

gdi32

GetTextMetricsA
GetTextExtentPointA
DeleteObject
GetDeviceCaps
SelectObject
CreateFontIndirectA

kernel32

LeaveCriticalSection
GetCPInfoExW
LocalFree
DeleteCriticalSection
LCMapStringA
GetLastError
GetSystemInfo
LocalAlloc
EnumResourceTypesA
GetModuleHandleA
EnterCriticalSection
GetLogicalDriveStringsA
LoadLibraryA
GetProcAddress
InitializeCriticalSection
SetStdHandle
LCMapStringW
GetStringTypeA

Sections

.text
Size: 106KB - Virtual size: 106KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 1024B - Virtual size: 1020B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 256KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy