e07cdae841d218a17720b9c0e0033fab3f3bf1c1f4a73720dfe48bb41db7da43 | Triage

Submit
Reports

Overview

overview

8

Static

static

e07cdae841...43.exe

windows7-x64

8

e07cdae841...43.exe

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

e07cdae841d218a17720b9c0e0033fab3f3bf1c1f4a73720dfe48bb41db7da43.exe

Resource

win7-20220901-en

spyware stealer upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

e07cdae841d218a17720b9c0e0033fab3f3bf1c1f4a73720dfe48bb41db7da43.exe

Resource

win10v2004-20221111-en

spyware stealer upx

windows10-2004-x64

3 signatures

150 seconds

General

Target

e07cdae841d218a17720b9c0e0033fab3f3bf1c1f4a73720dfe48bb41db7da43
Size

186KB
MD5

0d963ca2d4a2589987248b32f36c60bf
SHA1

4fb5199313ab9cb8a95e8b4bf9fa8431c47b83ff
SHA256

e07cdae841d218a17720b9c0e0033fab3f3bf1c1f4a73720dfe48bb41db7da43
SHA512

3ff3706e40add964cbe433d0389e4593db45b14a1819244cbc8766aade006d8b2d5312b855878f03c364543879b2797edf6459d80290380cf7e26471205d36b0
SSDEEP

3072:EINVE5v8KJmr8je2YB31kA+S73K+uyL+pbPRQw+in+holIJ2gpn39+YO:EqmvTJmQZYBl9hKDCDRe+ho+2gh9+YO

Score

N/A

Malware Config

Signatures

Files

e07cdae841d218a17720b9c0e0033fab3f3bf1c1f4a73720dfe48bb41db7da43
.exe windows x86

9f835f43d239077ca042fbf44c58f020

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLocaleInfoA
HeapSize
TlsAlloc
GetAtomNameA
GetOEMCP
WriteConsoleA
SetFilePointer
MultiByteToWideChar
VirtualAlloc
GetCPInfo
TlsGetValue
TlsSetValue
HeapReAlloc
EnumResourceTypesA
GetUserGeoID
IsValidCodePage
SetStdHandle
GetDateFormatA
GetTimeFormatA
GetConsoleOutputCP
RtlUnwind
GetACP
RaiseException

user32

DispatchMessageA
DispatchMessageW
LoadStringA
GetDesktopWindow
CharNextA
PeekMessageA
MessageBoxA
wsprintfA

shell32

SHGetUnreadMailCountW
SHGetPathFromIDListA
SHGetFileInfoA
SHBrowseForFolderA
SHAppBarMessage
DragAcceptFiles
ShellExecuteExA
Shell_NotifyIconA

rpcrt4

RpcStringFreeA

Sections

.text
Size: 88KB - Virtual size: 87KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 95KB - Virtual size: 235KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy