c60490c6abcf7b845c344a7888a485a85e8e7241897487adb464eab8e5c765fd | Triage

Submit
Reports

Overview

overview

Static

static

c60490c6ab...fd.exe

windows7-x64

c60490c6ab...fd.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

c60490c6abcf7b845c344a7888a485a85e8e7241897487adb464eab8e5c765fd.exe

Resource

win7-20220812-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

c60490c6abcf7b845c344a7888a485a85e8e7241897487adb464eab8e5c765fd.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

c60490c6abcf7b845c344a7888a485a85e8e7241897487adb464eab8e5c765fd
Size

113KB
MD5

0f0d80c46f618efab1eb8250bb218750
SHA1

ad1a594ebc5cb6f7e232299c5643c98937df7333
SHA256

c60490c6abcf7b845c344a7888a485a85e8e7241897487adb464eab8e5c765fd
SHA512

3ebbd05c99681788ed669e8c67d36b0990783cb477f2bc256adcc9389a7b0baffadb5d3946ba5033df30c9fbcd6137f30852ae91bb44eae2ffe03858398e30c1
SSDEEP

1536:E2QNbWI0VBZM/PG1jYxiIFa8rUbYzK2EvwhiVVEWiyHRXPxwFlKVqR/A2BCc:EPDcM/+1jSPFvK3vWzWdHiuqO

Score

N/A

Malware Config

Signatures

Files

c60490c6abcf7b845c344a7888a485a85e8e7241897487adb464eab8e5c765fd
.exe windows x86

a7fc1c761759fa0e84f766618357616a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsValidLocale
lstrcmpiA
GetProcessHeap
SetLastError
FileTimeToLocalFileTime
Sleep
GetModuleFileNameA
GetLogicalDriveStringsA
lstrcmpiA
DeleteFileA
WaitForSingleObject
GetStdHandle
lstrlenA
lstrcmpiA
lstrcmpiA
GetVolumePathNameA
HeapCreate
CreateMailslotA
lstrcmpiA
GetModuleHandleA
GetDriveTypeW
CreateNamedPipeA
SuspendThread

rastls

DllRegisterServer
DllGetClassObject
DllUnregisterServer
DllCanUnloadNow

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 104KB - Virtual size: 104KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rts
Size: 1024B - Virtual size: 788B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy