a2ca542a91c038ede6a0b2563931c23d26dbbaa6f150faccb54c4e2871d51950 | Triage

Submit
Reports

Overview

overview

8

Static

static

a2ca542a91...50.exe

windows7-x64

8

a2ca542a91...50.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

a2ca542a91c038ede6a0b2563931c23d26dbbaa6f150faccb54c4e2871d51950.exe

Resource

win7-20221111-en

spyware stealer upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

a2ca542a91c038ede6a0b2563931c23d26dbbaa6f150faccb54c4e2871d51950.exe

Resource

win10v2004-20221111-en

spyware stealer upx

windows10-2004-x64

3 signatures

150 seconds

General

Target

a2ca542a91c038ede6a0b2563931c23d26dbbaa6f150faccb54c4e2871d51950
Size

179KB
MD5

420d35de90dbe37eb9d3912c2047f7a0
SHA1

a740a16e30bb270c3b679a9cd8f31e9f797cb79b
SHA256

a2ca542a91c038ede6a0b2563931c23d26dbbaa6f150faccb54c4e2871d51950
SHA512

4731b10324862d2e0c2751fc7a1344aafadb6f78722b0bddb68592882eddc044d6644df7e06a0ee7831b2ed44656ca8288c1e008a623c13d37acf8a8d4b5e4f4
SSDEEP

3072:fyfBFobliA5yqm4PB8COpJxdcC9qrxrY8RCGkenq0lrxLqgpswFnzDTDy:q5Ylfy2SpfdcC9eaGkeplqgpsIXT+

Score

N/A

Malware Config

Signatures

Files

a2ca542a91c038ede6a0b2563931c23d26dbbaa6f150faccb54c4e2871d51950
.exe windows x86

46e683a77e21a6b27d225dfe2ddfd20d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapDestroy
InterlockedExchange
BaseFlushAppcompatCache
IsBadWritePtr
GetSystemTimeAsFileTime
VirtualQuery
HeapCreate
GetACP
VirtualAlloc
EnumResourceTypesW
SetEndOfFile
VirtualFree
CreateMailslotA
SetLastError
TlsAlloc
GetSystemInfo
TlsFree
GetLocaleInfoA

newdev

UpdateDriverForPlugAndPlayDevicesA

oleacc

AccessibleChildren
CreateStdAccessibleProxyW

Sections

.text
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 93KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy