d027b12d49c8e4998e8bbfb07ea523a744d8efeeedabb3bf9c38f53ba7b62796 | Triage

Submit
Reports

Overview

overview

Static

static

d027b12d49...96.exe

windows7-x64

d027b12d49...96.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

d027b12d49c8e4998e8bbfb07ea523a744d8efeeedabb3bf9c38f53ba7b62796.exe

Resource

win7-20221111-en

pony discovery rat spyware stealer upx

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

d027b12d49c8e4998e8bbfb07ea523a744d8efeeedabb3bf9c38f53ba7b62796.exe

Resource

win10v2004-20220812-en

pony discovery rat spyware stealer upx

windows10-2004-x64

9 signatures

150 seconds

General

Target

d027b12d49c8e4998e8bbfb07ea523a744d8efeeedabb3bf9c38f53ba7b62796
Size

122KB
MD5

9b7519aaddbdcfedca27ab63baba38ce
SHA1

21a4962a99882960ed8955a4b87e198d01ddf2da
SHA256

d027b12d49c8e4998e8bbfb07ea523a744d8efeeedabb3bf9c38f53ba7b62796
SHA512

74b69bc24e246da8bf68b109b8e11169b50145f0d3710a9740eb949522a4f232939c65a6df2e3ef5427361b247072c8aaedb19bfaa8e3cbd32afc06bb4094c32
SSDEEP

1536:s05k/jjJftYvSs8rCX9AnmWoEJm4VFj8K1Lt7nO9YvUuCZFkCBJTTQnhWHt4B:s1jjJftcr8nnNJZndlnO9YVuRjQnIw

Score

N/A

Malware Config

Signatures

Files

d027b12d49c8e4998e8bbfb07ea523a744d8efeeedabb3bf9c38f53ba7b62796
.exe windows x86

1a10b3b6adffdf4927c9afb46a49f55c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetCapture
GetCaretPos
CountClipboardFormats
IsIconic
BeginPaint
SetWindowTextA
EndPaint
RegisterClassExA
CreateWindowExA
DialogBoxParamA

gdi32

DeleteObject
GdiFlush
GetColorSpace
GetStockObject
CreateRoundRectRgn

kernel32

GetLastError
GetEnvironmentVariableA
SetFileAttributesA
GetTickCount
GetTempPathA
GetStartupInfoA
HeapFree
SetEndOfFile
GetDateFormatA
GetEnvironmentStrings
LeaveCriticalSection
FreeLibrary
DeleteCriticalSection
GetProcAddress
LoadLibraryA
EnterCriticalSection
InitializeCriticalSection
HeapAlloc
HeapCreate
MulDiv
GetModuleHandleA

Sections

.text
Size: 104KB - Virtual size: 103KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy