9faab1814cb3ef1cade0b603071ddf4f8a3f29653108ab79d6c3a9fdeef9d073 | Triage

Submit
Reports

Overview

overview

Static

static

9faab1814c...73.exe

windows7-x64

9faab1814c...73.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

9faab1814cb3ef1cade0b603071ddf4f8a3f29653108ab79d6c3a9fdeef9d073.exe

Resource

win7-20221111-en

persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

9faab1814cb3ef1cade0b603071ddf4f8a3f29653108ab79d6c3a9fdeef9d073.exe

Resource

win10v2004-20221111-en

persistence spyware stealer upx

windows10-2004-x64

4 signatures

150 seconds

General

Target

9faab1814cb3ef1cade0b603071ddf4f8a3f29653108ab79d6c3a9fdeef9d073
Size

176KB
MD5

ee4a7da41a2a70cd9f40c567cd39f1de
SHA1

4c40bb4c94e9ec3a63bfd746a8c3d24831b80c80
SHA256

9faab1814cb3ef1cade0b603071ddf4f8a3f29653108ab79d6c3a9fdeef9d073
SHA512

5f599fe14d90949415c5527c226cb74ccc674a41ee711219b8843951122a461839d58c8db3d8578667d01ad8970c0d24208dd222283d6a0d2866a5be620032aa
SSDEEP

3072:2l4AS8lm/7crfxopZleau4m8nT7RsVaJtM3da++XJLfdQSVj7:jXl72VaxmECVa83Y+uLdQS

Score

N/A

Malware Config

Signatures

Files

9faab1814cb3ef1cade0b603071ddf4f8a3f29653108ab79d6c3a9fdeef9d073
.exe windows x86

2eefa3205d70b9832b5f17d32edf9222

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MultiByteToWideChar
HeapReAlloc
GetAtomNameW
GetDateFormatA
RtlUnwind
TlsGetValue
SetStdHandle
SetFilePointer
GetTimeFormatA
GetOEMCP
GetCPInfo
GetACP
TlsSetValue
EnumResourceNamesA
GetLocaleInfoA
GetCPInfoExA
HeapSize
IsValidCodePage
TlsAlloc
WriteConsoleA
GetConsoleOutputCP
VirtualAlloc
RaiseException

shlwapi

UrlUnescapeW
PathIsContentTypeW
PathAppendW
SHCreateStreamOnFileEx
PathIsFileSpecW
PathCreateFromUrlA

occache

FindControlClose

Sections

.text
Size: 87KB - Virtual size: 479KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 86KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy