bbc1694d34c86a4761c3c9c22604dfa84d902acc901b73f5bce3c93f4052896d | Triage

Submit
Reports

Overview

overview

Static

static

bbc1694d34...6d.exe

windows7-x64

bbc1694d34...6d.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

bbc1694d34c86a4761c3c9c22604dfa84d902acc901b73f5bce3c93f4052896d.exe

Resource

win7-20220812-en

persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

bbc1694d34c86a4761c3c9c22604dfa84d902acc901b73f5bce3c93f4052896d.exe

Resource

win10v2004-20221111-en

persistence spyware stealer upx

windows10-2004-x64

4 signatures

150 seconds

General

Target

bbc1694d34c86a4761c3c9c22604dfa84d902acc901b73f5bce3c93f4052896d
Size

168KB
MD5

990d291ee4e4c467bbd8e409aef05ffc
SHA1

7bfd3b24a170c685aaccc1a09bae4b35cea4f850
SHA256

bbc1694d34c86a4761c3c9c22604dfa84d902acc901b73f5bce3c93f4052896d
SHA512

641c10799682b91d4c9c2955c16142f6b3d5c2f273e891264c4454ad09096a893afca66097da4065c1b07f8189094e8fac03e1ebe774aa4be11927de0a11691a
SSDEEP

3072:+ASStUn7NzThaRnKmqgTQA+TjivR8J9rcbnJpziKfK9CsYv5dTbSF9voHhtjpWO:+A/tO79ThaQLAQ5TjiPJpigR54Qc

Score

N/A

Malware Config

Signatures

Files

bbc1694d34c86a4761c3c9c22604dfa84d902acc901b73f5bce3c93f4052896d
.exe windows x86

f67e554a3cc862727f8541d0dbfe6fdf

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LCMapStringW
FindFirstFileA
AddAtomW
FlushFileBuffers
GetThreadLocale
VirtualProtect
GetStringTypeA
FreeEnvironmentStringsW
LCMapStringA
FreeEnvironmentStringsA
SetFilePointer
ReadFile
GetDiskFreeSpaceA
GetFullPathNameA
SetUnhandledExceptionFilter
EnumResourceNamesA
WideCharToMultiByte
IsBadCodePtr
CreateFileA
WriteFile
GetStringTypeExA
SetStdHandle
GetEnvironmentStrings
GetStringTypeW
GetOEMCP
GetCPInfo
GetEnvironmentStringsW
GetFileAttributesA
UnhandledExceptionFilter
IsBadReadPtr
MulDiv

shlwapi

SHGetInverseCMAP
SHCreateStreamOnFileEx
PathAppendA
PathIsContentTypeA
PathIsFileSpecA
PathCreateFromUrlW

rpcrt4

RpcStringFreeA

Sections

.text
Size: 84KB - Virtual size: 480KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 81KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy