f90e89ebce23e37ccd5b691bac3ac3fe19a42670971db48123921490663a01a8 | Triage

Submit
Reports

Overview

overview

Static

static

f90e89ebce...a8.exe

windows7-x64

f90e89ebce...a8.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

f90e89ebce23e37ccd5b691bac3ac3fe19a42670971db48123921490663a01a8.exe

Resource

win7-20220812-en

persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

f90e89ebce23e37ccd5b691bac3ac3fe19a42670971db48123921490663a01a8.exe

Resource

win10v2004-20220812-en

persistence spyware stealer upx

windows10-2004-x64

4 signatures

150 seconds

General

Target

f90e89ebce23e37ccd5b691bac3ac3fe19a42670971db48123921490663a01a8
Size

169KB
MD5

1969e74beb070698282a1fc9153ca3d4
SHA1

bf31ab4ea707206e637933374281171089a04050
SHA256

f90e89ebce23e37ccd5b691bac3ac3fe19a42670971db48123921490663a01a8
SHA512

2c707a80fb5340788437e96a612ce9417180fb00cd88da5e8bf1f3aab4db7003c190335a34910089263782501bd3df985fd05eedc513a4da3047d47d6fed63c4
SSDEEP

3072:jionjQ/lEYSQQFZ28RBJKCPB78JT1KMiPxLRPFfDUL8SJjTA6MOby:jiMQ/lrS28sC571RdfirA6MOO

Score

N/A

Malware Config

Signatures

Files

f90e89ebce23e37ccd5b691bac3ac3fe19a42670971db48123921490663a01a8
.exe windows x86

fef5ce2e221e0bdf20ba85aab9ed55a3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

AddAtomW
ReadFile
SetUnhandledExceptionFilter
GetStringTypeA
FreeEnvironmentStringsW
FlushFileBuffers
LCMapStringW
GetOEMCP
GetFileAttributesA
GetEnvironmentStringsW
CreateFileA
VirtualProtect
SetStdHandle
IsBadReadPtr
GetCPInfo
EnumResourceNamesA
UnhandledExceptionFilter
FreeEnvironmentStringsA
WideCharToMultiByte
FindFirstFileA
GetStringTypeExA
GetEnvironmentStrings
GetDiskFreeSpaceA
GetFullPathNameA
SetFilePointer
IsBadCodePtr
GetStringTypeW
GetThreadLocale
LCMapStringA
WriteFile
MulDiv

shlwapi

SHGetInverseCMAP
PathAppendA
SHCreateStreamOnFileEx
PathIsContentTypeA
PathIsFileSpecA
PathCreateFromUrlW

rpcrt4

RpcStringFreeA

Sections

.text
Size: 90KB - Virtual size: 485KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy