3e78112a54de7f49376c4b28fc72355f3a6fb0a09fb2fa302296e05e19e4ab90 | Triage

Submit
Reports

Overview

overview

Static

static

3e78112a54...90.exe

windows7-x64

3e78112a54...90.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

3e78112a54de7f49376c4b28fc72355f3a6fb0a09fb2fa302296e05e19e4ab90.exe

Resource

win7-20220812-en

pony collection discovery rat spyware stealer upx

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

3e78112a54de7f49376c4b28fc72355f3a6fb0a09fb2fa302296e05e19e4ab90.exe

Resource

win10v2004-20220812-en

pony collection discovery rat spyware stealer upx

windows10-2004-x64

13 signatures

150 seconds

General

Target

3e78112a54de7f49376c4b28fc72355f3a6fb0a09fb2fa302296e05e19e4ab90
Size

92KB
MD5

0514d5f42c19f52095c865d77588e0c5
SHA1

a6e551928ae8d41690cbb4ea52efd6092e6455aa
SHA256

3e78112a54de7f49376c4b28fc72355f3a6fb0a09fb2fa302296e05e19e4ab90
SHA512

43636f8e388b9005da75bc27788a7edb3763ae63ed7e32f9664bc27b15743005849594e95adffdb57149c4849fa5d0b0dc9c8bab58563cd98c12f0d50baf64d4
SSDEEP

1536:uEYwgdCWzqI/rNXvhEIuxTnTAzkylrQ/zc/Vw9FbRRzD333P3NYby:u+g0orNXOIuNn0kylrmzctw9F9RzT3Nh

Score

N/A

Malware Config

Signatures

Files

3e78112a54de7f49376c4b28fc72355f3a6fb0a09fb2fa302296e05e19e4ab90
.exe windows x86

05666296dca7f931030fe1f4c68df011

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetForegroundWindow

kernel32

IsValidCodePage

shlwapi

StrPBrkA

Exports

Exports

RoamingTraiI
?ImpactDS@@YG_JU_HALIGNLEFT@@U_REMOTECONTROL_SYS@@@I
?JoinLower@@YG_JU_HALIGNLEFT@@U_REMOTECONTROL_SYS@@@I

Sections

.text
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.write
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 5KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.read
Size: 512B - Virtual size: 245B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy