c4edf932064c26d6c33fbade71fb95558008fa6c37e563b5cc20998d6473a341 | Triage

Submit
Reports

Overview

overview

7

Static

static

c4edf93206...41.exe

windows7-x64

7

c4edf93206...41.exe

windows10-2004-x64

7

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

c4edf932064c26d6c33fbade71fb95558008fa6c37e563b5cc20998d6473a341.exe

Resource

win7-20220901-en

discovery persistence spyware stealer

windows7-x64

15 signatures

150 seconds

Behavioral task

behavioral2

Sample

c4edf932064c26d6c33fbade71fb95558008fa6c37e563b5cc20998d6473a341.exe

Resource

win10v2004-20220812-en

discovery persistence spyware stealer

windows10-2004-x64

11 signatures

150 seconds

General

Target

c4edf932064c26d6c33fbade71fb95558008fa6c37e563b5cc20998d6473a341
Size

320KB
MD5

56957404f1d1d83ee9baae529f5c4057
SHA1

8cc4f3c804fdfe8bb470d68e4837a6428e143764
SHA256

c4edf932064c26d6c33fbade71fb95558008fa6c37e563b5cc20998d6473a341
SHA512

e626e74f387c5c8d5a42ba571a9bff40c80db88fc3291c0917aa6105d0310278152231da1a450e728232a2664526fdc673e0866fcca24d3d863c9ac0c9b0300f
SSDEEP

3072:T/0Gf26o8XaIHfcEUzmxwiWxc4JhutFSVOf8RCO7g4v:Z5k2w3jhuvPO7h

Score

N/A

Malware Config

Signatures

Files

c4edf932064c26d6c33fbade71fb95558008fa6c37e563b5cc20998d6473a341
.exe windows x86

5fb33d542439af34b88cc10ae65498cb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DuplicateHandle
CreateSemaphoreW
GetLastError
lstrcpyA
lstrlenA
GetSystemDirectoryA
GetProcAddress
GetModuleHandleA
VirtualFree
GetModuleHandleW
VirtualAlloc
InterlockedDecrement
LCMapStringA
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
HeapFree
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
RtlUnwind
WriteFile
HeapAlloc
HeapReAlloc
GetCPInfo
GetACP
GetOEMCP
LoadLibraryA
RaiseException
LCMapStringW

user32

RegisterClassExW

winmm

auxSetVolume

Sections

.text
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 224KB - Virtual size: 221KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy