2508afe9a892af4e347634a704ab63a0[.]exe | Triage

Submit
Reports

Overview

overview

Static

static

2508afe9a8...a0.exe

windows7-x64

2508afe9a8...a0.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

2508afe9a892af4e347634a704ab63a0.exe

Resource

win7-20221111-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

2508afe9a892af4e347634a704ab63a0.exe

Resource

win10v2004-20221111-en

pony collection discovery rat spyware stealer

windows10-2004-x64

8 signatures

150 seconds

General

Target

2508afe9a892af4e347634a704ab63a0.exe
Size

117KB
MD5

2508afe9a892af4e347634a704ab63a0
SHA1

33cb981a758f86d8f38071aedeecbff8f8856159
SHA256

13a6a76e091b49ddebfbd3bac739f15a26ba3fee6326955010fe8fe4d11e626a
SHA512

57d6132c0a5d97260c82fd18c4b4b612d8aff3d1b5e2de982a78485655fa61ec28289fb0d24975cee2ff47aa6b6533613d7015bb18bfb197c712e7f6cc6183e6
SSDEEP

3072:OVG+bdomuCSeD2TPuVP8J0YlN27MztGh+GkUN:upZSeDKuaqJh+GkU

Score

N/A

Malware Config

Signatures

Files

2508afe9a892af4e347634a704ab63a0.exe
.exe windows x86

f6253fddbb8f9ca7beb966d396688639

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleAliasA
CreateSemaphoreW
GetShortPathNameW
GetACP
LoadLibraryA
SetCurrentDirectoryA
DeleteFileA
DeviceIoControl
SetEnvironmentVariableA
WriteConsoleW
GetStringTypeW
SetVolumeLabelW
CreateFileMappingW
CreateMailslotA
InitializeCriticalSection
GetStringTypeW
FatalExit
VirtualAlloc
CreatePipe
GetModuleHandleW
DeleteFileA
DeleteFileA
GetProcessHeap

mshtml

DllEnumClassObjects
ShowModelessHTMLDialog
ShowHTMLDialog
ShowModalDialog

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.orpc
Size: 109KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 1024B - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy