a9d480e95bba401da5437addcfb46883025cb8a77c3b1863a5818b80faab4ca3 | Triage

Submit
Reports

Overview

overview

8

Static

static

a9d480e95b...a3.exe

windows7-x64

8

a9d480e95b...a3.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

a9d480e95bba401da5437addcfb46883025cb8a77c3b1863a5818b80faab4ca3.exe

Resource

win7-20221111-en

spyware stealer upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

a9d480e95bba401da5437addcfb46883025cb8a77c3b1863a5818b80faab4ca3.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

a9d480e95bba401da5437addcfb46883025cb8a77c3b1863a5818b80faab4ca3
Size

184KB
MD5

fe454bd641dacb8fba0002d43ab0255d
SHA1

cde0a9d7ce7fd642f9fe52d2460bb850170dcc63
SHA256

a9d480e95bba401da5437addcfb46883025cb8a77c3b1863a5818b80faab4ca3
SHA512

dd6486faee225640137e4b6e8d2a34276f1449c2c5e7a6741a18b37b655f9d31ca33f42a93e21eb35193e6f026ffddd36674c9f7938934c72158461eafcde00c
SSDEEP

3072:k9t165k81VMAs6Ud65xssdWJHyztBisG6Bi5O6C8a5s5AbI6nx8PdGy0/YNJ4d2u:k965/MAxUdkzzBO6MOOdfdnsTTh

Score

N/A

Malware Config

Signatures

Files

a9d480e95bba401da5437addcfb46883025cb8a77c3b1863a5818b80faab4ca3
.exe windows x86

acd7ab1774815b64fc93728e278a0607

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegOpenKeyA
RegCreateKeyExA
RegCloseKey
RegOpenKeyExA
RegEnumKeyExA
RegDeleteKeyA
RegQueryValueExA
RegSetValueExA

ole32

StringFromIID
ProgIDFromCLSID
CoTaskMemFree
StringFromCLSID

shell32

SHGetPathFromIDListA
SHGetMalloc
SHGetSpecialFolderLocation

kernel32

InterlockedExchange
lstrlenA
UnhandledExceptionFilter
VirtualQueryEx
GetTickCount
IsDebuggerPresent
Sleep
GetModuleHandleA
GetCurrentProcessId
InterlockedCompareExchange
GetCurrentProcess
SetUnhandledExceptionFilter
EnumResourceNamesW
LocalAlloc
MultiByteToWideChar
GetSystemTimeAsFileTime
CreateProcessA
GetCPInfoExW
WideCharToMultiByte
lstrlenW
GetStartupInfoA
QueryPerformanceCounter
GetLocaleInfoA
GetEnvironmentVariableA
ExitProcess
RaiseException
GetCurrentThreadId
GetACP
GetThreadLocale

oleacc

LresultFromObject
CreateStdAccessibleObject

Sections

.text
Size: 111KB - Virtual size: 111KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 260KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy