e34252f3e686d9392f548a8cad5c0c74884846da18de78dde78a10cba5062410 | Triage

Submit
Reports

Overview

overview

Static

static

e34252f3e6...10.exe

windows7-x64

e34252f3e6...10.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

e34252f3e686d9392f548a8cad5c0c74884846da18de78dde78a10cba5062410.exe

Resource

win7-20220901-en

pony collection discovery rat spyware stealer upx

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

e34252f3e686d9392f548a8cad5c0c74884846da18de78dde78a10cba5062410.exe

Resource

win10v2004-20220812-en

pony collection discovery rat spyware stealer upx

windows10-2004-x64

13 signatures

150 seconds

General

Target

e34252f3e686d9392f548a8cad5c0c74884846da18de78dde78a10cba5062410
Size

144KB
MD5

0c7b6f882cf0740b3abc47ac2f729a25
SHA1

f376a000922e5bf9e0d24b87d7a418938141ae6a
SHA256

e34252f3e686d9392f548a8cad5c0c74884846da18de78dde78a10cba5062410
SHA512

1db3d555d7f976aeb1053ffcc19d37b7dbc2a47a545bb68796d5f09e970b7275d48f9df9b0a20c4dd8ed604a2a13109bde417d45b6332da56b877700663ca7eb
SSDEEP

3072:1GagUXMlDq2i1nmIpW92Sz2jewczmXxiwTBfC9eg9/mIjlSjDDMD:AagUXMlDa1mU62Sz2j9XzTBq96nQ

Score

N/A

Malware Config

Signatures

Files

e34252f3e686d9392f548a8cad5c0c74884846da18de78dde78a10cba5062410
.exe windows x86

27bd112332e9bf66a3810c277f92385a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

memset
strlen
strcpy
strcat
sprintf
_stricmp
memcpy
malloc
free
fseek
ftell
fread
fopen
longjmp
_setjmp3
fclose
floor
pow
gmtime
__p__iob
fprintf
frexp
modf
_CIpow
fwrite
fflush

kernel32

GetModuleHandleA
HeapCreate
HeapDestroy
ExitProcess
CloseHandle
CreateFileA
SetFilePointer
SetEndOfFile
HeapAlloc
WriteFile
HeapFree
WideCharToMultiByte
DeleteFileA
HeapReAlloc
lstrlenA

user32

CallWindowProcA

Sections

.code
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy