b02675b5e311dd58611da7347ee6a41511cb7b96a07b01325fc11f9b40a5e4cb | Triage

Submit
Reports

Overview

overview

8

Static

static

b02675b5e3...cb.exe

windows7-x64

8

b02675b5e3...cb.exe

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

b02675b5e311dd58611da7347ee6a41511cb7b96a07b01325fc11f9b40a5e4cb.exe

Resource

win7-20221111-en

spyware stealer upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

b02675b5e311dd58611da7347ee6a41511cb7b96a07b01325fc11f9b40a5e4cb.exe

Resource

win10v2004-20220812-en

spyware stealer upx

windows10-2004-x64

3 signatures

150 seconds

General

Target

b02675b5e311dd58611da7347ee6a41511cb7b96a07b01325fc11f9b40a5e4cb
Size

187KB
MD5

0db9ef1a6ca00a5178a8005155fe38e4
SHA1

18642d2461fcf44e4760d23e9b3a73a8e32b90e8
SHA256

b02675b5e311dd58611da7347ee6a41511cb7b96a07b01325fc11f9b40a5e4cb
SHA512

047d90e2b4e1c648e2e8771738b5f9b95f545216505cad27f7cececfc2e397824d33e4e0a0fec0a7d53bab3fa9bc413c283df8b0e3f23cc8f03e74c7e3b53533
SSDEEP

3072:daHotWoUST1g+qSIPNcV84DEMsaj+4fPTHwls+yWIsT2nP0RammA5OZow8D+ZOE9:dGoqSeVaVqMx1fjWIs40RNOilD2sJ9W

Score

N/A

Malware Config

Signatures

Files

b02675b5e311dd58611da7347ee6a41511cb7b96a07b01325fc11f9b40a5e4cb
.exe windows x86

d0120a6c20d7708f398c93c11fc08c2d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalGetAtomNameA
TlsAlloc
IsValidCodePage
SetStdHandle
GetOEMCP
VirtualAlloc
GetACP
HeapReAlloc
RtlUnwind
GetLocaleInfoA
TlsSetValue
EnumResourceNamesW
GetDateFormatA
HeapSize
WideCharToMultiByte
WriteConsoleA
SetFilePointer
GetConsoleOutputCP
GetCPInfo
TlsGetValue
GetTimeFormatA
MultiByteToWideChar
RaiseException

rpcrt4

RpcStringFreeA

user32

DispatchMessageA
CharNextA
MessageBoxA
PeekMessageA
DispatchMessageW
GetDesktopWindow
LoadStringA
wsprintfA

shell32

SHGetSpecialFolderLocation
DragAcceptFiles
SHGetFileInfoA
SHAppBarMessage
ShellExecuteExA
SHBrowseForFolderA
SHGetPathFromIDListA
Shell_NotifyIconA

Sections

.text
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 231KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy