bd6d03d343103449facf2729fb1a177b3fc21594eb15ee32803548794d3fae5f | Triage

Submit
Reports

Overview

overview

Static

static

bd6d03d343...5f.exe

windows7-x64

bd6d03d343...5f.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

bd6d03d343103449facf2729fb1a177b3fc21594eb15ee32803548794d3fae5f.exe

Resource

win7-20221111-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

bd6d03d343103449facf2729fb1a177b3fc21594eb15ee32803548794d3fae5f.exe

Resource

win10v2004-20221111-en

pony collection discovery rat spyware stealer

windows10-2004-x64

8 signatures

150 seconds

General

Target

bd6d03d343103449facf2729fb1a177b3fc21594eb15ee32803548794d3fae5f
Size

109KB
MD5

45173d2af808697aee637034de8a69f7
SHA1

6196494f637c44609d9513746f368136f769a44a
SHA256

bd6d03d343103449facf2729fb1a177b3fc21594eb15ee32803548794d3fae5f
SHA512

d933236e3f2a62d9bf2a065119127d84a4cbda9eb87afa0287cc9f3bb47b36c454cd9bf106f19d3cb22ccae360e6260197c50468924964edcb8f0bb15f7c6ce3
SSDEEP

3072:XcEb+lQ/r0pJoRqPf3AV1Nxl7Diaz2pci3QUY:XcEb3/rMqTW6iq

Score

N/A

Malware Config

Signatures

Files

bd6d03d343103449facf2729fb1a177b3fc21594eb15ee32803548794d3fae5f
.exe windows x86

f2957cde76ce9002549d652ead9a856b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
GetEnvironmentVariableW
SetLastError
SetFileAttributesW
GetCommandLineW
CloseHandle
GetFileTime
HeapCreate
HeapFree
GlobalSize
SetLastError
GetFileType
EnterCriticalSection
ExitThread
GlobalLock
GetDriveTypeA
ReadFile
GetFileAttributesA
FindClose
lstrlenA
MapViewOfFile
IsBadReadPtr
GetModuleHandleA
WaitForMultipleObjects
GetCurrentDirectoryW

uxtheme

GetThemeTextMetrics
IsThemeActive
SetWindowTheme
GetThemeTextExtent
CloseThemeData
GetThemeColor
OpenThemeData
GetThemeBool
CloseThemeData
GetThemeEnumValue
DrawThemeBackground
GetWindowTheme
DrawThemeEdge

dispex

DllCanUnloadNow
DllCanUnloadNow
DllCanUnloadNow
DllCanUnloadNow

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 10B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 102KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy