cbf3e2cf296c0eff31904e45d306d769a390d520fdf5d8100333d6cd88e09181 | Triage

Submit
Reports

Overview

overview

8

Static

static

cbf3e2cf29...81.exe

windows7-x64

8

cbf3e2cf29...81.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

cbf3e2cf296c0eff31904e45d306d769a390d520fdf5d8100333d6cd88e09181.exe

Resource

win7-20220901-en

persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

cbf3e2cf296c0eff31904e45d306d769a390d520fdf5d8100333d6cd88e09181.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

cbf3e2cf296c0eff31904e45d306d769a390d520fdf5d8100333d6cd88e09181
Size

125KB
MD5

fc2b5678358ea4561e7dfb6e38ae3ace
SHA1

391f43da182c881c5b920fac8bde879b91edd609
SHA256

cbf3e2cf296c0eff31904e45d306d769a390d520fdf5d8100333d6cd88e09181
SHA512

ee60f0f327ca42cddbd7429d84c74738a0bde51838640f4a0041a4c2eb199e8a3c09f6c06332dab8b7405d54ac00c792ff21c1f79f9425fc1cfac9fa9588759d
SSDEEP

3072:C+ZXY915D27FWq4ng4rhHlSDIeJJSlHgOoSnNLxw:VX43K7DgguxeJJSlpoSn9+

Score

N/A

Malware Config

Signatures

Files

cbf3e2cf296c0eff31904e45d306d769a390d520fdf5d8100333d6cd88e09181
.exe windows x86

f400a90f682162a55004cbc2a487e677

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathFindExtensionA

rpcrt4

RpcBindingFromStringBindingA
NdrClientCall
RpcStringBindingComposeA
RpcBindingSetAuthInfoA
RpcStringFreeA

kernel32

GetExitCodeProcess
ClearCommError
ReleaseMutex
CreateFileMappingA
ClearCommError
MapViewOfFile
CreateProcessW
EnumResourceNamesW
ExitProcess
ExitProcess
QueryPerformanceCounter
CreateMutexA
GetStartupInfoA
GetModuleFileNameW

user32

PostThreadMessageA
GetMessageA
CharNextA
CharUpperA
KillTimer
PeekMessageA
SetTimer
LoadStringA

Sections

.text
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rscr
Size: 512B - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy