ef7ff57fb023d047edffc6fb5d4703bbe6b433f83421bb6e83ba0d76309a5483 | Triage

Submit
Reports

Overview

overview

Static

static

ef7ff57fb0...83.exe

windows7-x64

ef7ff57fb0...83.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

ef7ff57fb023d047edffc6fb5d4703bbe6b433f83421bb6e83ba0d76309a5483.exe

Resource

win7-20220812-en

persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

ef7ff57fb023d047edffc6fb5d4703bbe6b433f83421bb6e83ba0d76309a5483.exe

Resource

win10v2004-20220901-en

persistence spyware stealer upx

windows10-2004-x64

4 signatures

150 seconds

General

Target

ef7ff57fb023d047edffc6fb5d4703bbe6b433f83421bb6e83ba0d76309a5483
Size

182KB
MD5

5abea14e6f5eeb28b322f4242599c121
SHA1

69a3df5db59a563a69ba592a9aef304889e4f7a6
SHA256

ef7ff57fb023d047edffc6fb5d4703bbe6b433f83421bb6e83ba0d76309a5483
SHA512

178c777211befb76038e6b89befcbaf80525da454c32587932ec271b1e040bca533f3dd2497c19af7d5f06b2999c9908336ee0978dad05d15a6fe92871f2c509
SSDEEP

3072:A/ZnL/TO1o9sRjTu2sqijlfVmNbt2xhdK4gLxEQPAOlLXENtM3gwGJDTLJ8vGFKs:ABGyEHuPdSt2vdk3XENtMoJDBBE8

Score

N/A

Malware Config

Signatures

Files

ef7ff57fb023d047edffc6fb5d4703bbe6b433f83421bb6e83ba0d76309a5483
.exe windows x86

a8e65a01bf60220a27343db6da7921f2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

rpcrt4

NdrComplexArrayFree
UuidCreate

winmm

timeEndPeriod

shlwapi

PathCombineW
PathRemoveFileSpecW
PathAppendW
SHGetValueW
PathFileExistsW

shell32

Shell_NotifyIconA

kernel32

FlushInstructionCache
MapViewOfFile
DuplicateHandle
UnmapViewOfFile
EnumResourceNamesW
SetLocaleInfoW
GetModuleFileNameW
FindFirstFileA
FindResourceExA
FindClose

Sections

.text
Size: 111KB - Virtual size: 111KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 712B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 260KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy