f4ebfacdc5edb13f3607068f0520ab0075103664194e7f90e5bd41cd7fde5fb3 | Triage

Submit
Reports

Overview

overview

Static

static

f4ebfacdc5...b3.exe

windows7-x64

f4ebfacdc5...b3.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

f4ebfacdc5edb13f3607068f0520ab0075103664194e7f90e5bd41cd7fde5fb3.exe

Resource

win7-20220812-en

pony collection discovery rat spyware stealer upx

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

f4ebfacdc5edb13f3607068f0520ab0075103664194e7f90e5bd41cd7fde5fb3.exe

Resource

win10v2004-20220812-en

pony collection discovery rat spyware stealer upx

windows10-2004-x64

13 signatures

150 seconds

General

Target

f4ebfacdc5edb13f3607068f0520ab0075103664194e7f90e5bd41cd7fde5fb3
Size

103KB
MD5

a1ff81e6dc87c74246c2bc737f822aed
SHA1

2bfe3a456e2a644c1b1b839a5a280598a815673b
SHA256

f4ebfacdc5edb13f3607068f0520ab0075103664194e7f90e5bd41cd7fde5fb3
SHA512

321e767da6593b9665b9aa4b645ca3c37b11e3d63856581a745dc8e6f9e7d424a5b70c6573a6a5ab8da7c2bbe38fe78b7b34a7bba818139f2e8288e64dd5534a
SSDEEP

1536:tvB8mhh+K00GFHs96Lo3zshDsIYnoWmLQ/Sw8DmhSbXQtlSRbSTyBR:hT0vlsUBZsGWmLQ/SwVhSbXAlSRbS

Score

N/A

Malware Config

Signatures

Files

f4ebfacdc5edb13f3607068f0520ab0075103664194e7f90e5bd41cd7fde5fb3
.exe windows x86

2ce4bda2a505aaf756d371a63df5e7c8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetForegroundWindow
GetActiveWindow
PtInRect

shlwapi

PathGetDriveNumberA
UrlIsW

kernel32

lstrcpynW

Exports

Exports

HighWaySeE
?MathInductField@@YG_JEPAXUmno284720984202747@@WE

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.zero
Size: 512B - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.one
Size: 512B - Virtual size: 413B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 42KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy