8f9c09aefc7d60f3c734fcdcf31bec70f17c1d04536593d05222a3c3531b20dd | Triage

Submit
Reports

Overview

overview

Static

static

8f9c09aefc...dd.exe

windows7-x64

8f9c09aefc...dd.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

8f9c09aefc7d60f3c734fcdcf31bec70f17c1d04536593d05222a3c3531b20dd.exe

Resource

win7-20221111-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

8f9c09aefc7d60f3c734fcdcf31bec70f17c1d04536593d05222a3c3531b20dd.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

8f9c09aefc7d60f3c734fcdcf31bec70f17c1d04536593d05222a3c3531b20dd
Size

122KB
MD5

d190367e4649744b61d8d156c0e39f22
SHA1

6feeed98b62c67fab563418b171a3780db3ba9be
SHA256

8f9c09aefc7d60f3c734fcdcf31bec70f17c1d04536593d05222a3c3531b20dd
SHA512

716b32d751ffa8518fc4ff5eaf002219f7331cc9c69ad43bc84d6e1259570fe6dc8ce91733392f3dedfd41f130da1ae166b07603344310c9e1470fc8bc408f93
SSDEEP

3072:Ym2g+TwZ0WiGytNzc2KgOi8u333VbUCM94:Ym1+TFWiGyvQ2K8xq94

Score

N/A

Malware Config

Signatures

Files

8f9c09aefc7d60f3c734fcdcf31bec70f17c1d04536593d05222a3c3531b20dd
.exe windows x86

a6c7f23f3ffd379b4562391995a5cc07

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetPrivateProfileIntA
GetDiskFreeSpaceW
GetDiskFreeSpaceW
WaitForSingleObject
InterlockedDecrement
ExitProcess
GetPrivateProfileIntA
WriteFileEx
lstrcmpA
Sleep
LoadLibraryA
VirtualAllocEx
lstrcpyW
GetModuleHandleW
GetExitCodeProcess
GetLongPathNameA
SetEnvironmentVariableA
GetFileAttributesA
Sleep
GetPrivateProfileSectionA
FindResourceW
Sleep
InterlockedIncrement

apphelp

ApphelpCheckIME
AllowPermLayer
ApphelpCheckExe
SdbCreateMsiTransformFile

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dbg
Size: 116KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy