fb639e1d49ee1dc50721e3e42ef70734823b6108147c92256e3fee7803b6fca3 | Triage

Submit
Reports

Overview

overview

Static

static

fb639e1d49...a3.exe

windows7-x64

fb639e1d49...a3.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

fb639e1d49ee1dc50721e3e42ef70734823b6108147c92256e3fee7803b6fca3.exe

Resource

win7-20220812-en

persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

fb639e1d49ee1dc50721e3e42ef70734823b6108147c92256e3fee7803b6fca3.exe

Resource

win10v2004-20220812-en

persistence spyware stealer upx

windows10-2004-x64

4 signatures

150 seconds

General

Target

fb639e1d49ee1dc50721e3e42ef70734823b6108147c92256e3fee7803b6fca3
Size

164KB
MD5

26055891889c78414b251d538c43c977
SHA1

4655b7f743db7b6b8b782515c0e1364b876f8f60
SHA256

fb639e1d49ee1dc50721e3e42ef70734823b6108147c92256e3fee7803b6fca3
SHA512

c27c555faba4c506180f57de7946bdb348d085891018dcd7baf3c94402327d610eba89286ed2b83d292731906470c71d5dec75b9569c1fceca1d38d31d29d9dc
SSDEEP

3072:es+AA9OxR62sQxdF0euEqoVj9lGsNv091RCoPibK7A4vqpNAHe45sAZfNIm:es+T2R62s4dF0MqorlGLvRM4qpiHeu

Score

N/A

Malware Config

Signatures

Files

fb639e1d49ee1dc50721e3e42ef70734823b6108147c92256e3fee7803b6fca3
.exe windows x86

576f9458b3e7d6c4dab46810d2af1024

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsValidCodePage
GlobalGetAtomNameA
TlsSetValue
GetACP
GetTimeFormatA
HeapSize
GetOEMCP
VirtualAlloc
TlsGetValue
WriteConsoleA
GetCPInfo
SetFilePointer
MultiByteToWideChar
EnumResourceTypesA
GetConsoleOutputCP
IsSystemResumeAutomatic
RtlUnwind
GetDateFormatA
HeapReAlloc
GetLocaleInfoA
TlsAlloc
SetStdHandle
RaiseException

shell32

SHDefExtractIconA
SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
DragAcceptFiles
ShellExecuteExA
Shell_NotifyIconA

version

GetFileVersionInfoA

Sections

.text
Size: 77KB - Virtual size: 77KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 932B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 84KB - Virtual size: 483KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy