8fb31f12579552f3cedfb16bff3583b9d407ba6ecbfa3c0cab1da40c8c471007 | Triage

Submit
Reports

Overview

overview

Static

static

8fb31f1257...07.exe

windows7-x64

8fb31f1257...07.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

8fb31f12579552f3cedfb16bff3583b9d407ba6ecbfa3c0cab1da40c8c471007.exe

Resource

win7-20221111-en

pony discovery evasion persistence rat spyware stealer upx

windows7-x64

20 signatures

150 seconds

Behavioral task

behavioral2

Sample

8fb31f12579552f3cedfb16bff3583b9d407ba6ecbfa3c0cab1da40c8c471007.exe

Resource

win10v2004-20220901-en

pony discovery evasion persistence rat spyware stealer upx

windows10-2004-x64

22 signatures

150 seconds

General

Target

8fb31f12579552f3cedfb16bff3583b9d407ba6ecbfa3c0cab1da40c8c471007
Size

278KB
MD5

75f3393b4c6e1760a73a302a637204d2
SHA1

336d483d84a82247d74d89b142fce7e21ee511f6
SHA256

8fb31f12579552f3cedfb16bff3583b9d407ba6ecbfa3c0cab1da40c8c471007
SHA512

85e191b1096fe72d3a76ed3a94bab3885ba5a8db987bd755f2400d6e6be04a63a9d71d7624bd59926e91170b4e2179b2f433e6fb11161252bced9172b37318b6
SSDEEP

6144:ODSrDCMeJF83JrQkuntfw2dehXquZJRHbS1/:ODxMW+sPDQBquXR7S

Score

N/A

Malware Config

Signatures

Files

8fb31f12579552f3cedfb16bff3583b9d407ba6ecbfa3c0cab1da40c8c471007
.exe windows x86

295baa0a1ed8d0503df98610dad70604

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_AGGRESIVE_WS_TRIM
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

FindFirstFileA
GetOEMCP
GlobalFindAtomA
LCMapStringW
SetStdHandle
GetCPInfo
UnhandledExceptionFilter
IsBadReadPtr
LCMapStringA
GetStringTypeW
GetEnvironmentStringsW
FreeEnvironmentStringsW
FlushFileBuffers
SetUnhandledExceptionFilter
EnumResourceNamesW
IsBadCodePtr
SetFilePointer
GetThreadLocale
GetStringTypeA
FreeEnvironmentStringsA
WideCharToMultiByte
GetStringTypeExA
VirtualProtect
GetDiskFreeSpaceA
GetFileAttributesA
ReadFile
WriteFile
CreateFileA
GetEnvironmentStrings
GetFullPathNameA
MulDiv

rpcrt4

RpcStringFreeA

shlwapi

SHGetInverseCMAP
SHCreateStreamOnFileEx
PathIsFileSpecA
PathAppendA
PathIsContentTypeA
PathCreateFromUrlW

Sections

.text
Size: 135KB - Virtual size: 275KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 140KB - Virtual size: 139KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy