cb0ea71266394dc77b320dc309ffc1226631461a1c6b7a2e7f2766fed9038a22 | Triage

Submit
Reports

Overview

overview

Static

static

cb0ea71266...22.exe

windows7-x64

cb0ea71266...22.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

cb0ea71266394dc77b320dc309ffc1226631461a1c6b7a2e7f2766fed9038a22.exe

Resource

win7-20221111-en

pony discovery evasion persistence rat spyware stealer upx

windows7-x64

20 signatures

150 seconds

Behavioral task

behavioral2

Sample

cb0ea71266394dc77b320dc309ffc1226631461a1c6b7a2e7f2766fed9038a22.exe

Resource

win10v2004-20221111-en

pony discovery evasion persistence rat spyware stealer upx

windows10-2004-x64

22 signatures

150 seconds

General

Target

cb0ea71266394dc77b320dc309ffc1226631461a1c6b7a2e7f2766fed9038a22
Size

284KB
MD5

62fdfc1139c85ea83edf669619caeabf
SHA1

2d5ce225911d6b9a45add6be6ef5614b151b72b2
SHA256

cb0ea71266394dc77b320dc309ffc1226631461a1c6b7a2e7f2766fed9038a22
SHA512

eb66b297f9db9195037a9087643b111651e02b50207b405ee5cfe10a727cebf42d9cfb9be43c6ea2088ef0082a6788410e3764723d574b3835fdef8a9d853b5e
SSDEEP

6144:9v/IiVsPjo82vLrkKbGi6qzXQs7c4pDkHKHKWVGANCs5FGWO0:fGjo8UrbGnqzJv1YKHK3AgmC

Score

N/A

Malware Config

Signatures

Files

cb0ea71266394dc77b320dc309ffc1226631461a1c6b7a2e7f2766fed9038a22
.exe windows x86

069519986a37f7ccca188125afb1cb93

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteConsoleA
GetAtomNameA
SetFilePointer
GetLocaleInfoA
HeapReAlloc
TlsGetValue
MultiByteToWideChar
SetStdHandle
GetTimeFormatA
GetOEMCP
HeapSize
EnumResourceTypesA
GetConsoleOutputCP
IsValidCodePage
TlsSetValue
TlsAlloc
CreateToolhelp32Snapshot
GetDateFormatA
VirtualAlloc
GetCPInfo
RtlUnwind
GetACP
RaiseException

user32

CharNextA
LoadStringA
DispatchMessageA
PeekMessageA
MessageBoxA
GetDesktopWindow
DispatchMessageW
wsprintfA

rpcrt4

RpcStringFreeA

shell32

SHGetUnreadMailCountW
SHAppBarMessage
ShellExecuteExA
SHBrowseForFolderA
DragAcceptFiles
SHGetPathFromIDListA
SHGetFileInfoA
Shell_NotifyIconA

Sections

.text
Size: 130KB - Virtual size: 129KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 151KB - Virtual size: 278KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy