4dbdcd1746bab9985b3de8f1fb6cb67d91915868645893b9ea3af79ca69a4eaa | Triage

Submit
Reports

Overview

overview

Static

static

4dbdcd1746...aa.exe

windows7-x64

4dbdcd1746...aa.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

4dbdcd1746bab9985b3de8f1fb6cb67d91915868645893b9ea3af79ca69a4eaa.exe

Resource

win7-20220901-en

pony discovery persistence rat spyware stealer upx

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

4dbdcd1746bab9985b3de8f1fb6cb67d91915868645893b9ea3af79ca69a4eaa.exe

Resource

win10v2004-20220812-en

pony discovery persistence rat spyware stealer upx

windows10-2004-x64

11 signatures

150 seconds

General

Target

4dbdcd1746bab9985b3de8f1fb6cb67d91915868645893b9ea3af79ca69a4eaa
Size

94KB
MD5

6ac59fa263860ffb06396f4d8e31d992
SHA1

89bbf5ac81b8fcbeaaf82ea7edf9542360305bb2
SHA256

4dbdcd1746bab9985b3de8f1fb6cb67d91915868645893b9ea3af79ca69a4eaa
SHA512

d95e5d6a450a67f839402ad35b5d52816b58d4942ee50e8cdb71cd36457bdeba2b94a64730845cadf31c04522c67747ba2ce9e1e498036907e3e5fa5c620b13e
SSDEEP

1536:jNlGw2iJAqHl7/TaHt4BNhHD97fFmqsqgeY7PDWaIv4uSuGoU5tkirq:jDGKGuh/eyB3HD97Nm4gdDC7wu0o+v

Score

N/A

Malware Config

Signatures

Files

4dbdcd1746bab9985b3de8f1fb6cb67d91915868645893b9ea3af79ca69a4eaa
.exe windows x86

260293b06736a772d926e95cacc51137

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

LineDDA

kernel32

GetConsoleCP

user32

IsCharAlphaNumericW

Exports

Exports

RoamingTraiO
?ImpactDS@@YG_JU_HALIGNLEFT@@U_REMOTECONTROL_SYS@@@O
?JoinLower@@YG_JU_HALIGNLEFT@@U_REMOTECONTROL_SYS@@@O
?PowerUpgrade@@YG_JU_HALIGNLEFT@@U_REMOTECONTROL_SYS@@@O

Sections

.text
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy