b017fe5e0c048442bb8186233d955ca05353f92e2e958e488f78b764f5ae222c | Triage

Submit
Reports

Overview

overview

8

Static

static

b017fe5e0c...2c.exe

windows7-x64

8

b017fe5e0c...2c.exe

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

b017fe5e0c048442bb8186233d955ca05353f92e2e958e488f78b764f5ae222c.exe

Resource

win7-20220812-en

spyware stealer upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

b017fe5e0c048442bb8186233d955ca05353f92e2e958e488f78b764f5ae222c.exe

Resource

win10v2004-20221111-en

spyware stealer upx

windows10-2004-x64

3 signatures

150 seconds

General

Target

b017fe5e0c048442bb8186233d955ca05353f92e2e958e488f78b764f5ae222c
Size

186KB
MD5

d588e650affe4ff1502a57d73d100f32
SHA1

caf90b42e7af4c37f131fa6322f1eab17afe6564
SHA256

b017fe5e0c048442bb8186233d955ca05353f92e2e958e488f78b764f5ae222c
SHA512

06143c5ec53ff09fe4476e92d9f55385f8804ecf774361c37267be760be6ae081ccc2a6d3668a29a1c29b1545cd1bee8e1963f0cd4977954a33fbc297fc34d17
SSDEEP

3072:Sm2kZTsr6MtjTagDqK+QDes5P4p7CsobH1671e9HQ4BnC/De4/JYNO1Eh7RAJ1jf:0kZTsuuCgTPz7bVGGo/DPhYNO1EhaJtf

Score

N/A

Malware Config

Signatures

Files

b017fe5e0c048442bb8186233d955ca05353f92e2e958e488f78b764f5ae222c
.exe windows x86

68d646e4868f624981cf4a88b8c838ca

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteConsoleA
SetFilePointer
HeapSize
GetAtomNameA
SetStdHandle
VirtualAlloc
GetLocaleInfoA
GetOEMCP
RtlUnwind
TlsSetValue
TlsGetValue
GetDateFormatA
GetCPInfo
EnumResourceTypesA
HeapReAlloc
CreateToolhelp32Snapshot
GetTimeFormatA
MultiByteToWideChar
TlsAlloc
GetACP
IsValidCodePage
GetConsoleOutputCP
RaiseException

user32

GetDesktopWindow
MessageBoxA
LoadStringA
DispatchMessageW
DispatchMessageA
PeekMessageA
CharNextA
wsprintfA

rpcrt4

RpcStringFreeA

shell32

SHGetUnreadMailCountW
SHAppBarMessage
SHBrowseForFolderA
SHGetFileInfoA
DragAcceptFiles
SHGetPathFromIDListA
ShellExecuteExA
Shell_NotifyIconA

Sections

.text
Size: 86KB - Virtual size: 85KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 97KB - Virtual size: 232KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy