b761c5c0699467f29c09568f8afd056a08a0f62fb9b703a777f7713b223d33b7 | Triage

Submit
Reports

Overview

overview

8

Static

static

b761c5c069...b7.exe

windows7-x64

8

b761c5c069...b7.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

b761c5c0699467f29c09568f8afd056a08a0f62fb9b703a777f7713b223d33b7.exe

Resource

win7-20221111-en

persistence spyware stealer upx

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

b761c5c0699467f29c09568f8afd056a08a0f62fb9b703a777f7713b223d33b7.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

b761c5c0699467f29c09568f8afd056a08a0f62fb9b703a777f7713b223d33b7
Size

172KB
MD5

a89fd38cc489565b5957ac79e58390eb
SHA1

f5ba384f16b2fbfe21b7a456470c0813f0c26c60
SHA256

b761c5c0699467f29c09568f8afd056a08a0f62fb9b703a777f7713b223d33b7
SHA512

710a0a3f8e6eaf5d95563d3937624efb5cbc1512a1a3a780f5ce81b70b2f1b5125c304ee83a3390246ea0bc3f97b51b9c572946b65ec18de725d2595a55ea190
SSDEEP

3072:DH69DiMTdgP6RvRP5VwYznpDBkvWwvbSlJHy/r/zMJmd7DGpXj:Wh3CSR1Q6LkvNvySj/zCgDq

Score

N/A

Malware Config

Signatures

Files

b761c5c0699467f29c09568f8afd056a08a0f62fb9b703a777f7713b223d33b7
.exe windows x86

1a184f33624194ad8185f04727ea2c79

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntdll

NtUnmapViewOfSection

ws2_32

inet_ntoa
WSAStartup
inet_addr
WSAConnect
htons
WSACleanup
recv
gethostbyname
send
WSASocketA

wininet

InternetGetConnectedState

kernel32

HeapAlloc
CloseHandle
HeapFree
WriteFile
CreateFileA
SetFilePointer
GetProcessHeap
ExitProcess
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
DeleteFileA

user32

wvsprintfA

Sections

.text
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 74KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy