cb1d563f6d72a8689c02cec449075e5d7eaf59efbef62b8462ad3e540ef9ac4f | Triage

Submit
Reports

Overview

overview

Static

static

cb1d563f6d...4f.exe

windows7-x64

cb1d563f6d...4f.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

cb1d563f6d72a8689c02cec449075e5d7eaf59efbef62b8462ad3e540ef9ac4f.exe

Resource

win7-20220901-en

pony discovery rat spyware stealer upx

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

cb1d563f6d72a8689c02cec449075e5d7eaf59efbef62b8462ad3e540ef9ac4f.exe

Resource

win10v2004-20220812-en

pony discovery rat spyware stealer upx

windows10-2004-x64

9 signatures

150 seconds

General

Target

cb1d563f6d72a8689c02cec449075e5d7eaf59efbef62b8462ad3e540ef9ac4f
Size

75KB
MD5

5096207222f3eaaa75a7dbbfa776ad28
SHA1

32b668ca08bfe72392abdb0803490964ce48e068
SHA256

cb1d563f6d72a8689c02cec449075e5d7eaf59efbef62b8462ad3e540ef9ac4f
SHA512

0c6e12b84c7649a3080ade757a67625590830ad1cbb343cea78996fa9c92c1371f2f7ce9a6bd144778301051cb512c167865edd872798e221b71dc10a3893c1f
SSDEEP

1536:jxNK3cFyWymkwppfYgOzRGF04e7y683KkjJiQ9GeDiLvcU:jxNvoWlkwrfYr+0L7J8hli7e+YU

Score

N/A

Malware Config

Signatures

Files

cb1d563f6d72a8689c02cec449075e5d7eaf59efbef62b8462ad3e540ef9ac4f
.exe windows x86

545d10d6e0594a663c2c1254a744cca0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CreateWindowExA
LoadCursorA
BeginPaint
WindowFromPoint
EndPaint
IsWindow
SetWindowTextA
RegisterClassExW
ShowWindow
UpdateWindow
GetMessageA
TranslateMessage
DispatchMessageA
LoadIconA

gdi32

GetTextColor
SetRectRgn
CreateFontIndirectA
DeleteObject
FrameRgn

ole32

CoInitialize

kernel32

GetThreadLocale
GetTickCount
GetPrivateProfileStringA
GetEnvironmentVariableA
GetDateFormatA
GetStartupInfoA
GetEnvironmentStrings
GetExitCodeProcess
InitializeCriticalSection
HeapFree
HeapDestroy
GetLastError
RtlUnwind
SetFileAttributesA
FreeLibrary
EnterCriticalSection
LeaveCriticalSection
HeapAlloc
HeapCreate
GetProcAddress
LoadLibraryA
DeleteCriticalSection

Sections

.text
Size: 62KB - Virtual size: 61KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy