bb9f7e4fca9972d62887c25e320f1407605d8ce53cb1d9f088e9af2dce76819c | Triage

Submit
Reports

Overview

overview

Static

static

bb9f7e4fca...9c.exe

windows7-x64

bb9f7e4fca...9c.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

bb9f7e4fca9972d62887c25e320f1407605d8ce53cb1d9f088e9af2dce76819c.exe

Resource

win7-20220901-en

pony discovery evasion persistence rat spyware stealer upx

windows7-x64

20 signatures

150 seconds

Behavioral task

behavioral2

Sample

bb9f7e4fca9972d62887c25e320f1407605d8ce53cb1d9f088e9af2dce76819c.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

bb9f7e4fca9972d62887c25e320f1407605d8ce53cb1d9f088e9af2dce76819c
Size

297KB
MD5

27a4ea110eebb04953f43e8c10d9aead
SHA1

4ad809e4645810c1d9aecb90e4f29c8a6f91a3aa
SHA256

bb9f7e4fca9972d62887c25e320f1407605d8ce53cb1d9f088e9af2dce76819c
SHA512

6192b18f45e466b4296022e332cd596fa6570d31b391c57df695ecf18bc6c35688337e218cde61de8301cac85565eafb930f4accf8a1499eff19fda4c158b5fe
SSDEEP

6144:TwQWKNYmPRANDyBtDVdPPxOisrkBOr+c//I/n9PVf1smX6xAGbX:MQWKtPRARoPv9BU+mg/9PVf1sk6A

Score

N/A

Malware Config

Signatures

Files

bb9f7e4fca9972d62887c25e320f1407605d8ce53cb1d9f088e9af2dce76819c
.exe windows x86

68177135c928bf3bb8ccdbe5aec84d77

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetDateFormatA
GetLocaleInfoA
GlobalGetAtomNameW
HeapReAlloc
GetConsoleOutputCP
GetTimeFormatA
VirtualAlloc
GetCPInfo
TlsAlloc
GetACP
EnumResourceNamesA
MultiByteToWideChar
SetStdHandle
SetFilePointer
TlsGetValue
WriteConsoleA
GetModuleHandleA
HeapSize
TlsSetValue
IsValidCodePage
GetOEMCP
RtlUnwind
RaiseException

occache

FindControlClose

shell32

SHCreateStdEnumFmtEtc
SHGetFileInfoW
SHAppBarMessage
SHBrowseForFolderW
ShellExecuteW
SHGetSpecialFolderLocation
SHGetPathFromIDListW
DragAcceptFiles
SHGetDesktopFolder
SHGetMalloc
ShellExecuteExW
Shell_NotifyIconW

Sections

.text
Size: 149KB - Virtual size: 265KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 144KB - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy