d5288fca52315fa1a15e4d20a4a2c16a37e36dea9e3ee277d1efaf820dd45a81 | Triage

Submit
Reports

Overview

overview

8

Static

static

d5288fca52...81.exe

windows7-x64

8

d5288fca52...81.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

d5288fca52315fa1a15e4d20a4a2c16a37e36dea9e3ee277d1efaf820dd45a81.exe

Resource

win7-20221111-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

d5288fca52315fa1a15e4d20a4a2c16a37e36dea9e3ee277d1efaf820dd45a81.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

d5288fca52315fa1a15e4d20a4a2c16a37e36dea9e3ee277d1efaf820dd45a81
Size

811KB
MD5

10cd7a2e0ea0059bacbce524f50439df
SHA1

2916d1c29bb6d0a81a248dff0acd800b2a662498
SHA256

d5288fca52315fa1a15e4d20a4a2c16a37e36dea9e3ee277d1efaf820dd45a81
SHA512

7a8d5223fab1c4060bf90087b6d3820d1c5ce02569ea7a5f18ef165dfc2b887fcaf45bd3b667b323238d06c17d4c95aa89e3a7a7f8d5c4ccb8f25d3d8a9b9d0c
SSDEEP

24576:WJYPA7BNpQPs0t8Of6eQRfDmGBiFGeXREZ:WSA7CUOf6eEzi4e

Score

N/A

Malware Config

Signatures

Files

d5288fca52315fa1a15e4d20a4a2c16a37e36dea9e3ee277d1efaf820dd45a81
.exe windows x86

485da413afde7be53a5f3004b71c6b93

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TlsGetValue
GetCalendarInfoA
CreateDirectoryW
GetModuleHandleA
ReadFile
GetModuleFileNameA
VirtualProtectEx
GetConsoleTitleW
RemoveDirectoryA
InitializeCriticalSection
GetFileSize
lstrlenW
GetCommandLineW
GetStartupInfoA
CloseHandle
EnterCriticalSection
GlobalFree
Sleep
WriteConsoleW
DeleteFileA
LeaveCriticalSection
GetTickCount
CancelIo
CancelIo
CreateFileA

user32

GetSysColor
IsWindowVisible
MessageBoxA
EqualRect
GetWindowLongA
GetWindowDC
DispatchMessageA
IsWindow
FillRect
wsprintfA
IsWindowEnabled
GetWindowLongA
PeekMessageA

cryptdlg

CertTrustInit
CertTrustCleanup
CertConfigureTrustA
CertTrustCertPolicy

advapi32

RegCloseKey

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 522B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 800KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy