c7d6ddc3ff9d41d85a708410394b3823e3ef7849767ae321c38b79c1b38350ff | Triage

Submit
Reports

Overview

overview

Static

static

c7d6ddc3ff...ff.exe

windows7-x64

c7d6ddc3ff...ff.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

c7d6ddc3ff9d41d85a708410394b3823e3ef7849767ae321c38b79c1b38350ff.exe

Resource

win7-20220812-en

pony discovery evasion persistence rat spyware stealer upx

windows7-x64

20 signatures

150 seconds

Behavioral task

behavioral2

Sample

c7d6ddc3ff9d41d85a708410394b3823e3ef7849767ae321c38b79c1b38350ff.exe

Resource

win10v2004-20221111-en

pony discovery evasion persistence rat spyware stealer upx

windows10-2004-x64

22 signatures

150 seconds

General

Target

c7d6ddc3ff9d41d85a708410394b3823e3ef7849767ae321c38b79c1b38350ff
Size

314KB
MD5

5bd5425e6e471cc102050fb4158cfed4
SHA1

684132b4b8711b475a3dcf44fb97eb7a1c2d95ef
SHA256

c7d6ddc3ff9d41d85a708410394b3823e3ef7849767ae321c38b79c1b38350ff
SHA512

060ec3e6aa10be42eaf23922b52620f683627008692b7b012f676a3bcf6c03bef56b9f21aa434819ebc5ae7cf09f4239397518724cb77c9899730ec7e08db72f
SSDEEP

6144:ATOW9JzJa8imtQywYZ1NQSoXo7tA/13X4zC9h6molt8YcFdWbiVkuWZRfT:Kla8dtQyDfoXo7ti13IzC2Pj8YQoiVnW

Score

N/A

Malware Config

Signatures

Files

c7d6ddc3ff9d41d85a708410394b3823e3ef7849767ae321c38b79c1b38350ff
.exe windows x86

9d099bb63572cab9b0ecfd232c1f59f8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStringTypeA
TlsGetValue
HeapReAlloc
GetStringTypeW
IsValidCodePage
LCMapStringW
EnumSystemLanguageGroupsW
GetTimeZoneInformation
OutputDebugStringW
GetLocaleInfoA
DebugBreak
CompareFileTime
OutputDebugStringA
LCMapStringA
WriteConsoleW
GetCPInfo

shell32

SHChangeNotify
SHGetPathFromIDListW

ole32

CoInitialize
CoCreateInstance
FreePropVariantArray
GetRunningObjectTable
ReleaseStgMedium
StringFromGUID2
CoTaskMemAlloc
CreateClassMoniker
CoUninitialize
CoGetObject
CoTaskMemFree

winmm

sndPlaySoundA

oleacc

DllGetClassObject
CreateStdAccessibleObject

oledlg

OleUIBusyW

Sections

.text
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 215KB - Virtual size: 215KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy