b271470c467a3776e54cb21f88d4cb165fd6e117dd04ebe8a69389e5f70068dd | Triage

Submit
Reports

Overview

overview

8

Static

static

b271470c46...dd.exe

windows7-x64

8

b271470c46...dd.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

b271470c467a3776e54cb21f88d4cb165fd6e117dd04ebe8a69389e5f70068dd.exe

Resource

win7-20220901-en

spyware stealer upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

b271470c467a3776e54cb21f88d4cb165fd6e117dd04ebe8a69389e5f70068dd.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

b271470c467a3776e54cb21f88d4cb165fd6e117dd04ebe8a69389e5f70068dd
Size

237KB
MD5

9f2007e6e9ee932a4152b3c2e24bd96d
SHA1

12834df0acc424ea8d767bd1d19a7d4938426e9a
SHA256

b271470c467a3776e54cb21f88d4cb165fd6e117dd04ebe8a69389e5f70068dd
SHA512

4897f575209017097d5c831022a73e0a359a8f271adba10de1223a814d47042be49c29426f6ea24c7ce8d15b1ab523c881a634f4a8b748cfa8c9e09a230d18fd
SSDEEP

6144:iTaQDHVAWcmpMFC/dd21eSfa9NdosSHPPGGdMUvnjlaL/:inDaW7Dd0YSf2msSvPGGSUvnR

Score

N/A

Malware Config

Signatures

Files

b271470c467a3776e54cb21f88d4cb165fd6e117dd04ebe8a69389e5f70068dd
.exe windows x86

a1d79a5edbcd09aef762474b6bfdd811

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

msimg32

AlphaBlend

setupapi

CMP_WaitNoPendingInstallEvents
SetupDiGetDeviceRegistryPropertyW
CM_Get_DevNode_Status

kernel32

CreateFiberEx
TlsAlloc
GetCurrentThreadId
TlsFree
TerminateJobObject
GetLocaleInfoW
FoldStringW
EnumResourceNamesW
LoadLibraryA
FlushFileBuffers
TlsGetValue
Sleep
GetLastError
VirtualProtect

user32

LoadIconW
RealGetWindowClass
MapVirtualKeyW
GetSystemMetrics

Sections

.text
Size: 217KB - Virtual size: 216KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 768B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy