c45c1438896edcf906bb271a4e8a09e73bab3ae59bc445aa83792d3d7a186073 | Triage

Submit
Reports

Overview

overview

Static

static

c45c143889...73.exe

windows7-x64

c45c143889...73.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

c45c1438896edcf906bb271a4e8a09e73bab3ae59bc445aa83792d3d7a186073.exe

Resource

win7-20221111-en

pony discovery evasion persistence rat spyware stealer upx

windows7-x64

21 signatures

150 seconds

Behavioral task

behavioral2

Sample

c45c1438896edcf906bb271a4e8a09e73bab3ae59bc445aa83792d3d7a186073.exe

Resource

win10v2004-20221111-en

pony discovery evasion persistence rat spyware stealer upx

windows10-2004-x64

23 signatures

150 seconds

General

Target

c45c1438896edcf906bb271a4e8a09e73bab3ae59bc445aa83792d3d7a186073
Size

283KB
MD5

d097cdd74be70db04c3a784516f7dc2a
SHA1

e8089a95a1160331e118d79c730e45668fef9145
SHA256

c45c1438896edcf906bb271a4e8a09e73bab3ae59bc445aa83792d3d7a186073
SHA512

a11311bb02b260f1b01b1dbcfc851c6ce532085becf669e303d5d376de4fc94a387c64e21ed10fee0d6bc9f331f6e5aa870441d54a1d0843655f82e2eb44fbb2
SSDEEP

6144:dJpC9nmDAfDLq2NJ0qoJIvJDHJruFR5Yrw4o0wX6OzE:wUAf9XJzEFvZ4oxX6Oz

Score

N/A

Malware Config

Signatures

Files

c45c1438896edcf906bb271a4e8a09e73bab3ae59bc445aa83792d3d7a186073
.exe windows x86

126883cc3b48800b4adbe28e9ffb7c71

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetDateFormatA
GlobalGetAtomNameA
GetLocaleInfoA
TlsGetValue
GetTimeFormatA
VirtualAlloc
GetACP
SetFilePointer
GetConsoleOutputCP
HeapSize
TlsAlloc
HeapReAlloc
RtlUnwind
EnumResourceNamesA
CreateHardLinkA
SetStdHandle
IsValidCodePage
MultiByteToWideChar
GetCPInfo
GetOEMCP
WriteConsoleA
TlsSetValue
RaiseException

occache

FindControlClose

shell32

SHGetFolderLocation
ShellExecuteExW
SHGetMalloc
SHGetFileInfoW
SHGetPathFromIDListW
SHGetDesktopFolder
SHGetSpecialFolderLocation
ShellExecuteW
SHBrowseForFolderW
DragAcceptFiles
SHAppBarMessage
Shell_NotifyIconW

Sections

.text
Size: 134KB - Virtual size: 265KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 146KB - Virtual size: 146KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy