c2f299f304fd57c165eeae3c8fd5d4fae9d3cfcd6696e679061e6c9bef5e0220 | Triage

Submit
Reports

Overview

overview

Static

static

c2f299f304...20.exe

windows7-x64

c2f299f304...20.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

c2f299f304fd57c165eeae3c8fd5d4fae9d3cfcd6696e679061e6c9bef5e0220.exe

Resource

win7-20220812-en

persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

c2f299f304fd57c165eeae3c8fd5d4fae9d3cfcd6696e679061e6c9bef5e0220.exe

Resource

win10v2004-20221111-en

persistence spyware stealer upx

windows10-2004-x64

4 signatures

150 seconds

General

Target

c2f299f304fd57c165eeae3c8fd5d4fae9d3cfcd6696e679061e6c9bef5e0220
Size

173KB
MD5

b2fb147e14f41639d25279bef1f39477
SHA1

b5cd2b382f73cec7594bcaec9625510061f2d7b4
SHA256

c2f299f304fd57c165eeae3c8fd5d4fae9d3cfcd6696e679061e6c9bef5e0220
SHA512

8e6213a3114fb7708194edfdb81a24634637365a9c3abb723e83c0353e274973bae06c620cbec8ed7b398ed3e8a74b0b10b98e0854ee54db821c5e698058f088
SSDEEP

3072:o8E3q7DSXv1xHEE9D2nPTYb6zATk95/OuMoxmeMewwbU1TyphD7:oZ3IS/1xke2nLYU+rjIo1eh

Score

N/A

Malware Config

Signatures

Files

c2f299f304fd57c165eeae3c8fd5d4fae9d3cfcd6696e679061e6c9bef5e0220
.exe windows x86

7dfadc78a0820c1ae218bde470c32e22

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalGetAtomNameW
WriteConsoleA
GetDateFormatA
VirtualAlloc
HeapReAlloc
GetOEMCP
GetACP
MultiByteToWideChar
TlsGetValue
RtlUnwind
GetLocaleInfoA
EnumResourceTypesW
GetConsoleOutputCP
GetCPInfo
SetUserGeoID
HeapSize
SetFilePointer
TlsSetValue
IsValidCodePage
GetTimeFormatA
TlsAlloc
SetStdHandle
RaiseException

shell32

SHGetUnreadMailCountW
SHBrowseForFolderA
SHGetFileInfoA
DragAcceptFiles
ShellExecuteExA
SHGetPathFromIDListA
Shell_NotifyIconA

user32

DispatchMessageW
DispatchMessageA
CharNextA
MessageBoxA
GetDesktopWindow
LoadStringA
PeekMessageA
wsprintfA

rpcrt4

RpcStringFreeA

Sections

.text
Size: 93KB - Virtual size: 93KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 76KB - Virtual size: 464KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy