e9b05a7ed88937cfd433eb40ffc5fcb31cc693b9434c10139dab11fada6feda4 | Triage

Submit
Reports

Overview

overview

Static

static

e9b05a7ed8...a4.exe

windows7-x64

e9b05a7ed8...a4.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

e9b05a7ed88937cfd433eb40ffc5fcb31cc693b9434c10139dab11fada6feda4.exe

Resource

win7-20221111-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

e9b05a7ed88937cfd433eb40ffc5fcb31cc693b9434c10139dab11fada6feda4.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

e9b05a7ed88937cfd433eb40ffc5fcb31cc693b9434c10139dab11fada6feda4
Size

112KB
MD5

08f1a56bc87909065397deb179df8c70
SHA1

6dda275b1750fdb368002a2791debda800610a55
SHA256

e9b05a7ed88937cfd433eb40ffc5fcb31cc693b9434c10139dab11fada6feda4
SHA512

9f88cc67de3ab75e41fadfbbd14c526e00357f8ff27b5f35c624e621d797a9c3d9ee9d8aae6a7b7a5f8440c056a8eea6e0c3b3221fc0a1d2fccb1bdc1c63cd38
SSDEEP

3072:ze7ID2Y/KvsnghdoRb47KJ9s1lXAYv5/3f:RuvsngCU75lXAYJ3

Score

N/A

Malware Config

Signatures

Files

e9b05a7ed88937cfd433eb40ffc5fcb31cc693b9434c10139dab11fada6feda4
.exe windows x86

c09aa2527c441dcf7782de66c92dd053

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLogicalDrives
lstrcmpiA
GetConsoleTitleW
GetTickCount
IsValidCodePage
GetLastError
GetModuleHandleA
GetLocalTime
lstrcatW
GetDriveTypeA
GetShortPathNameW
SetFilePointer
HeapCreate
GetStringTypeW
TlsAlloc
GetStdHandle
SetEnvironmentVariableA
SetPriorityClass
GetModuleHandleW
SetLastError
HeapFree
GetVersion
GetExitCodeProcess

netshell

HrGetIconFromMediaType
HrLaunchConnection
DllGetClassObject
DllRegisterServer

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dataz
Size: 107KB - Virtual size: 107KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.orpc
Size: 1024B - Virtual size: 524B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy