e322cd5ee7b5eefa6f4d6d9c8ac4440b94c42ffaaf8ebfd4fb888f73eef1a8ea | Triage

Submit
Reports

Overview

overview

Static

static

e322cd5ee7...ea.exe

windows7-x64

e322cd5ee7...ea.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

e322cd5ee7b5eefa6f4d6d9c8ac4440b94c42ffaaf8ebfd4fb888f73eef1a8ea.exe

Resource

win7-20220812-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

e322cd5ee7b5eefa6f4d6d9c8ac4440b94c42ffaaf8ebfd4fb888f73eef1a8ea.exe

Resource

win10v2004-20221111-en

pony collection discovery rat spyware stealer

windows10-2004-x64

8 signatures

150 seconds

General

Target

e322cd5ee7b5eefa6f4d6d9c8ac4440b94c42ffaaf8ebfd4fb888f73eef1a8ea
Size

108KB
MD5

0bd61a4e947a97c28e420b753c703e58
SHA1

4c593e035eb520ddd8f78bc127793fc7c333b02e
SHA256

e322cd5ee7b5eefa6f4d6d9c8ac4440b94c42ffaaf8ebfd4fb888f73eef1a8ea
SHA512

b2ae7f8298934af7902f3325465addea94d91dbc65f8c0311dc13bb79520e30ae5675bae0aa36334f144adf066704cc469469c7321f2f34ec0d8a1460df4d2b2
SSDEEP

3072:JpECTeC5E4zoIsNpRHc145mq8756zDzI3:JSC6CK4EIsvVcCmq87MzI3

Score

N/A

Malware Config

Signatures

Files

e322cd5ee7b5eefa6f4d6d9c8ac4440b94c42ffaaf8ebfd4fb888f73eef1a8ea
.exe windows x86

a0ec7e2c6f80c45627fd71460793a6ee

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindAtomW
CloseHandle
VirtualAlloc
IsBadReadPtr
DeleteAtom
GetCurrentDirectoryA
SetFileAttributesA
GetModuleHandleA
GetStdHandle
DeleteFileA
GetVersion
GetFileSize
SetEndOfFile
CreateFileA
GetEnvironmentVariableA
GetCommandLineA
WaitForSingleObject
HeapSize
GetFileAttributesA
ExitProcess
ResumeThread
SetLastError
SetLastError
GetExitCodeThread
EnterCriticalSection

shell32

SHFree
SHGetMalloc
DragQueryFileA
DragFinish
SHFree
DragAcceptFiles
DuplicateIcon
ShellAboutA
StrChrA
ShellMessageBoxA
ExtractIconA
SHGetSettings
DllUnregisterServer

umdmxfrm

GetXformInfo
GetXformInfo
GetXformInfo
GetXformInfo

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 10B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 101KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy