e0bc12664d91b6747b4a36cab4cbd7f358c104482f994531e9a5429ec8e6c68e | Triage

Submit
Reports

Overview

overview

Static

static

e0bc12664d...8e.exe

windows7-x64

e0bc12664d...8e.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

e0bc12664d91b6747b4a36cab4cbd7f358c104482f994531e9a5429ec8e6c68e.exe

Resource

win7-20221111-en

persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

e0bc12664d91b6747b4a36cab4cbd7f358c104482f994531e9a5429ec8e6c68e.exe

Resource

win10v2004-20220812-en

persistence spyware stealer upx

windows10-2004-x64

4 signatures

150 seconds

General

Target

e0bc12664d91b6747b4a36cab4cbd7f358c104482f994531e9a5429ec8e6c68e
Size

165KB
MD5

a4fd7dcf74e020a04833b0596174d202
SHA1

4f53194c66f840d918396bfa075e0dbaaf3891ad
SHA256

e0bc12664d91b6747b4a36cab4cbd7f358c104482f994531e9a5429ec8e6c68e
SHA512

1a771ffc988a8b3c9faa26ad0a9be2104e87f09a98e2bb63b8c19e3acbfb318d54a8586379cf93528af5a3ad42d30abe7a4a093283465849f26a6798289b8c43
SSDEEP

3072:CTDC79PWNvz/xXPuP9HEOif14oS/3iIdGRciNSeRUG+aJPWa:CXC7dMvbd2ktx83N8cikeRUGDRWa

Score

N/A

Malware Config

Signatures

Files

e0bc12664d91b6747b4a36cab4cbd7f358c104482f994531e9a5429ec8e6c68e
.exe windows x86

8dbf967a63b903a08d2970f11c864421

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SizeofResource
FindResourceA
HeapAlloc
FreeLibrary
lstrcmpiA
IsDBCSLeadByte
lstrcpynA
LoadLibraryExA
EnumResourceTypesA
CreateFileA
lstrcpyA
LoadResource
MultiByteToWideChar
FindFirstFileExW
InterlockedDecrement
WideCharToMultiByte
GetModuleHandleA
lstrlenW
ReadFile
InterlockedIncrement

gdi32

GetStockObject

oleacc

GetOleaccVersionInfo
CreateStdAccessibleObject

Sections

.text
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 400KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 78KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy