fd93d33df2379a11fc3ca698bb64f0f577d87d8cc2480d51895913f33aa298da | Triage

Submit
Reports

Overview

overview

Static

static

fd93d33df2...da.exe

windows7-x64

fd93d33df2...da.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

fd93d33df2379a11fc3ca698bb64f0f577d87d8cc2480d51895913f33aa298da.exe

Resource

win7-20220901-en

pony discovery evasion persistence rat spyware stealer upx

windows7-x64

20 signatures

150 seconds

Behavioral task

behavioral2

Sample

fd93d33df2379a11fc3ca698bb64f0f577d87d8cc2480d51895913f33aa298da.exe

Resource

win10v2004-20220901-en

pony discovery evasion persistence rat spyware stealer upx

windows10-2004-x64

22 signatures

150 seconds

General

Target

fd93d33df2379a11fc3ca698bb64f0f577d87d8cc2480d51895913f33aa298da
Size

271KB
MD5

9d1cf1c13569b998050c3a6259c71513
SHA1

25865c563b2e29e2cd63c2a014225d86190eef6f
SHA256

fd93d33df2379a11fc3ca698bb64f0f577d87d8cc2480d51895913f33aa298da
SHA512

e34d3ea1761b49f566ae6036fc9ba5406b3b73fe93d44c740360d098613dd6b441cafb3f19946d9443b2b14208b0c058e383719c8bffe6b8e3db29ca2f06156e
SSDEEP

6144:EAHug4A5bkM2AFXzVTD53Cp66l5OgUfnMaeiM++/Z:EkZ5bkKHbEaf+/

Score

N/A

Malware Config

Signatures

Files

fd93d33df2379a11fc3ca698bb64f0f577d87d8cc2480d51895913f33aa298da
.exe windows x86

9bd31a951c26712d18dae5f27739a6af

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MulDiv
GetAtomNameA
FindFirstFileW
DeleteCriticalSection
FindClose
FreeLibrary
MultiByteToWideChar
LockResource
GetProcAddress
LoadLibraryA
Sleep
LoadResource
GlobalSize
GetModuleFileNameW
GetVersionExA
GetPrivateProfileIntW
EnumResourceTypesW
GetSystemDirectoryW
GetTickCount
GetVersionExW
InitializeCriticalSection
GetPrivateProfileStringW
GetModuleHandleW
LoadLibraryW
lstrlenW
WritePrivateProfileStringW
GetLocaleInfoW

oleacc

LresultFromObject
CreateStdAccessibleObject
CreateStdAccessibleProxyW

newdev

UpdateDriverForPlugAndPlayDevicesW

Sections

.text
Size: 113KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 155KB - Virtual size: 155KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy