a7719548ed2644587a90098b69142d5b3d962ca00ddf059527fae6618dc38b3b | Triage

Submit
Reports

Overview

overview

8

Static

static

a7719548ed...3b.exe

windows7-x64

8

a7719548ed...3b.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

a7719548ed2644587a90098b69142d5b3d962ca00ddf059527fae6618dc38b3b.exe

Resource

win7-20220901-en

spyware stealer upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

a7719548ed2644587a90098b69142d5b3d962ca00ddf059527fae6618dc38b3b.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

a7719548ed2644587a90098b69142d5b3d962ca00ddf059527fae6618dc38b3b
Size

164KB
MD5

0764ccca068258f2adfb7778ff3d129d
SHA1

76bfd309461e42d90c23bd8c7986a72fda8f8b7c
SHA256

a7719548ed2644587a90098b69142d5b3d962ca00ddf059527fae6618dc38b3b
SHA512

0ed7ecf0d855e9b1ff16e17c804771f35fbf6b2801f6f66d1ff458a4bc75f04534fa38f3e93265b0f6cb18d817f685b715c8fc70712df6e05832c793b6377248
SSDEEP

3072:lNFrU9ZxyPJm9aEOoyQ8P00p+BnMVS43SKPFVUsdEEgUyAi663Pnu8kQ0L16:FrLPJbHQ8bp+BMVSoSCKCZiAiLPnm/

Score

N/A

Malware Config

Signatures

Files

a7719548ed2644587a90098b69142d5b3d962ca00ddf059527fae6618dc38b3b
.exe windows x86

f00a92759606f57617e17dc15f666f71

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

oleacc

LresultFromObject
CreateStdAccessibleObject

ole32

CoTaskMemAlloc
CoTaskMemRealloc
CoRegisterClassObject
CoRevokeClassObject
StringFromGUID2
CoCreateInstance
CoInitialize
CoUninitialize
CoTaskMemFree
StringFromCLSID

shlwapi

PathCombineW
PathFileExistsW

kernel32

FindClose
lstrcpyA
GetACP
DeleteCriticalSection
GetTickCount
CheckRemoteDebuggerPresent
lstrlenW
lstrcmpiW
OutputDebugStringW
WideCharToMultiByte
EnumResourceNamesA
LockResource
GetCPInfo
MultiByteToWideChar
InitializeCriticalSection
lstrcpyA
lstrcpyW
GlobalFree
GlobalAlloc
GetLastError
GetModuleHandleW

user32

PostThreadMessageW
TranslateMessage
CharUpperW
KillTimer
GetMessageW
SetTimer
DispatchMessageW
GetDC
CharNextW
SendMessageW
wsprintfW
UnregisterClassA

Sections

.text
Size: 103KB - Virtual size: 103KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 57KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.isete
Size: 1024B - Virtual size: 248KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy