cfbb199c09d2714dca434866d22e012958d6728c70d8c99cffdc5ba5912861ce | Triage

Submit
Reports

Overview

overview

Static

static

cfbb199c09...ce.exe

windows7-x64

cfbb199c09...ce.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

cfbb199c09d2714dca434866d22e012958d6728c70d8c99cffdc5ba5912861ce.exe

Resource

win7-20220812-en

persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

cfbb199c09d2714dca434866d22e012958d6728c70d8c99cffdc5ba5912861ce.exe

Resource

win10v2004-20220812-en

persistence spyware stealer upx

windows10-2004-x64

4 signatures

150 seconds

General

Target

cfbb199c09d2714dca434866d22e012958d6728c70d8c99cffdc5ba5912861ce
Size

164KB
MD5

99f19a1f0663b6e7c012d40523d6592d
SHA1

81cb4aa7061c8db6ac34f371b5f01b87043571b3
SHA256

cfbb199c09d2714dca434866d22e012958d6728c70d8c99cffdc5ba5912861ce
SHA512

7b5acb8d2e6089a216075b049e69373d2780f8f89ba5094fa9f156d0522f1f59aee09f95b2c7406944215f5a2d9fa1ed33072640ae54472d9e881298eaad651c
SSDEEP

3072:1ik/fS/0cq0MrSDRvSKgur/pjKxe/9g8JW5tOFDzCqsbTwtM1lFjKm3lwgVEsPsI:tGZq0ASDKePJ82HCqsbRFegn

Score

N/A

Malware Config

Signatures

Files

cfbb199c09d2714dca434866d22e012958d6728c70d8c99cffdc5ba5912861ce
.exe windows x86

44ba09d6d963b8fcdffc2f904c153929

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalGetAtomNameW
GetDateFormatA
GetLocaleInfoA
HeapReAlloc
GetConsoleOutputCP
TlsAlloc
GetACP
VirtualAlloc
HeapSize
GetTimeFormatA
EnumResourceTypesA
SetFilePointer
SetStdHandle
GetCPInfo
GetOEMCP
TlsGetValue
MultiByteToWideChar
SetThreadLocale
WriteConsoleA
RtlUnwind
IsValidCodePage
TlsSetValue
RaiseException

rpcrt4

RpcStringFreeA

user32

PeekMessageA
DispatchMessageA
CharNextA
GetDesktopWindow
DispatchMessageW
MessageBoxA
LoadStringA
wsprintfA

shell32

SHGetDataFromIDListW
DragAcceptFiles
SHBrowseForFolderA
SHGetPathFromIDListA
ShellExecuteExA
SHGetFileInfoA
Shell_NotifyIconA

Sections

.text
Size: 75KB - Virtual size: 75KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 86KB - Virtual size: 485KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy