bf9511dff06a6a7b50145533d568b1a4945c6c42c4d760f9315c2735382b4a9b | Triage

Submit
Reports

Overview

overview

Static

static

bf9511dff0...9b.exe

windows7-x64

bf9511dff0...9b.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

bf9511dff06a6a7b50145533d568b1a4945c6c42c4d760f9315c2735382b4a9b.exe

Resource

win7-20221111-en

persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

bf9511dff06a6a7b50145533d568b1a4945c6c42c4d760f9315c2735382b4a9b.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

bf9511dff06a6a7b50145533d568b1a4945c6c42c4d760f9315c2735382b4a9b
Size

193KB
MD5

39ee1f643d75bcb871d587496e8d29b8
SHA1

49733f0eb6dc0f2a7885deab207fd79f254f8830
SHA256

bf9511dff06a6a7b50145533d568b1a4945c6c42c4d760f9315c2735382b4a9b
SHA512

3a14c24e4c276a0bb16b68a5874c81aaa2fae8c098443b38131c2f09d584b864aa2eb5da0225c87d636cee65d91a2d27e4eef7099fe63c20c6d36a4ffd96e805
SSDEEP

3072:s55JRcehHtSaj15ZIkpaUb5xYt+SUpdf2mKs79BOQW23WSZotmrL1:EKehQaxEkp5xSUXf2mKs79urtsL1

Score

N/A

Malware Config

Signatures

Files

bf9511dff06a6a7b50145533d568b1a4945c6c42c4d760f9315c2735382b4a9b
.exe windows x86

82611ace5de5358a557fa5d26de05148

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoMarshalHresult
CoSetProxyBlanket
CoInitializeSecurity
CoCreateInstance
CoTaskMemFree
CoInitializeEx
CoUninitialize
CoQueryProxyBlanket
StringFromGUID2

imm32

ImmAssociateContext

kernel32

SetProcessAffinityMask
WriteConsoleW
GetOEMCP
GetEnvironmentStringsW
IsValidCodePage
GetCurrentProcessId
WaitForMultipleObjects
GetSystemTimeAsFileTime
GetConsoleOutputCP
CreateFileA
QueryPerformanceCounter
GetCurrentThreadId
FreeEnvironmentStringsA
EnumResourceTypesA
GetACP
FlushFileBuffers
GetEnvironmentStrings
GetProfileIntA
SetEvent
GetLocalTime
LoadLibraryA
FreeEnvironmentStringsW
WriteConsoleA
MoveFileW
SetStdHandle
GetCPInfo
GetLocaleInfoA

Sections

.text
Size: 122KB - Virtual size: 122KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 248KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy