b9cca208a458a0a45e7ee5e104ebbaa1bf063846277be32dcebe92427b8837be | Triage

Submit
Reports

Overview

overview

Static

static

b9cca208a4...be.exe

windows7-x64

b9cca208a4...be.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

b9cca208a458a0a45e7ee5e104ebbaa1bf063846277be32dcebe92427b8837be.exe

Resource

win7-20220812-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

b9cca208a458a0a45e7ee5e104ebbaa1bf063846277be32dcebe92427b8837be.exe

Resource

win10v2004-20220812-en

pony collection discovery rat spyware stealer

windows10-2004-x64

8 signatures

150 seconds

General

Target

b9cca208a458a0a45e7ee5e104ebbaa1bf063846277be32dcebe92427b8837be
Size

109KB
MD5

ffefa21c175ebcae2ef45f264ef13c28
SHA1

c77e250cabc780f0f80e0514c15cdcee6e0864d6
SHA256

b9cca208a458a0a45e7ee5e104ebbaa1bf063846277be32dcebe92427b8837be
SHA512

006fb4ec2501a70c38bde1a5281f16de35e58d79b4dc12388daf29f181524c26cc9d811a8d44041838fb093bf472f95d17c79eb0def5ad340f002e66a2f724d4
SSDEEP

3072:kFix7wBwVKGZx8x3EKDVxqaYJHq84c7vN9s:kEJw0KGZxw33DVxHYt4czA

Score

N/A

Malware Config

Signatures

Files

b9cca208a458a0a45e7ee5e104ebbaa1bf063846277be32dcebe92427b8837be
.exe windows x86

4f989fb57c53619361bbef9ff13937ca

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetLastError
GlobalLock
MapViewOfFile
GetModuleHandleA
SetFileAttributesW
GetDriveTypeA
GetFileAttributesA
GetEnvironmentVariableW
Sleep
HeapFree
EnterCriticalSection
GetCurrentDirectoryW
SuspendThread
LocalSize
GetFileTime
CloseHandle
WaitForSingleObject
GetCommandLineA
GetFileType
SetLastError
HeapCreate
ReadFile
GetCommandLineW
IsBadReadPtr
ExitProcess

uxtheme

GetThemeEnumValue
GetThemeTextMetrics
CloseThemeData
DrawThemeBackground
GetThemeTextExtent
SetWindowTheme
GetThemeBool
DrawThemeEdge
GetWindowTheme
OpenThemeData
IsThemeActive
CloseThemeData
GetThemeColor

dbnmpntw

ConnectionVer
ConnectionVer
ConnectionVer
ConnectionVer

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 10B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 102KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy