9b9cc1ea0dc162aad6668e08ccfddc95eedd7eea53f5c08ee9a48200548402a8 | Triage

Submit
Reports

Overview

overview

8

Static

static

9b9cc1ea0d...a8.exe

windows7-x64

8

9b9cc1ea0d...a8.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

9b9cc1ea0dc162aad6668e08ccfddc95eedd7eea53f5c08ee9a48200548402a8.exe

Resource

win7-20220812-en

persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

9b9cc1ea0dc162aad6668e08ccfddc95eedd7eea53f5c08ee9a48200548402a8.exe

Resource

win10v2004-20221111-en

persistence spyware stealer upx

windows10-2004-x64

4 signatures

150 seconds

General

Target

9b9cc1ea0dc162aad6668e08ccfddc95eedd7eea53f5c08ee9a48200548402a8
Size

177KB
MD5

c685103f4d82a14b08ff5c2dc7230cfb
SHA1

62e478fd75138ca038d35cf56513fa44509c8b76
SHA256

9b9cc1ea0dc162aad6668e08ccfddc95eedd7eea53f5c08ee9a48200548402a8
SHA512

4810d2224cde4e1a4ae4be12a678907e1e8214e0003e78dee35537a3b964678f6b8e7158f18d387ac7aaafd6784c4b687717248b68b25813fec826809ae0be6c
SSDEEP

3072:cnhHUqpFo6wcUt3uCSWXMV6A6KhxsOexl/vBYxvNfTr43f4vbx5LWGApAf0L:iJ7pOiUt+QMV6jPOo/ixvNfX43f495CX

Score

N/A

Malware Config

Signatures

Files

9b9cc1ea0dc162aad6668e08ccfddc95eedd7eea53f5c08ee9a48200548402a8
.exe windows x86

07892a6c3f38be3ff5cf01959d7080de

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdiplus

GdipCreateBitmapFromFile
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipDisposeImage

rpcrt4

I_RpcFreeBuffer
UuidCreate

winmm

timeGetTime

kernel32

FlushInstructionCache
LocalAlloc
ExitProcess
LocalFree
ExitProcess
SetLocaleInfoW
LoadLibraryW
GetVersionExA
GetModuleFileNameA

msimg32

AlphaBlend
TransparentBlt

user32

RedrawWindow
CreatePopupMenu
DestroyMenu
FindWindowA
TrackPopupMenuEx
ClipCursor
GetDesktopWindow

Sections

.text
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 924B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy