1337ca6ac8c0ea34ee10da208843fd16efe6b5b287f71cb57328c8362d81c68e | Triage

Submit
Reports

Overview

overview

8

Static

static

1337ca6ac8...8e.exe

windows7-x64

8

1337ca6ac8...8e.exe

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

1337ca6ac8c0ea34ee10da208843fd16efe6b5b287f71cb57328c8362d81c68e.exe

Resource

win7-20221111-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

1337ca6ac8c0ea34ee10da208843fd16efe6b5b287f71cb57328c8362d81c68e.exe

Resource

win10v2004-20220812-en

discovery persistence spyware stealer upx

windows10-2004-x64

5 signatures

150 seconds

General

Target

1337ca6ac8c0ea34ee10da208843fd16efe6b5b287f71cb57328c8362d81c68e
Size

815KB
MD5

a7e6f8c8cb220cb53cbbd67f4e7ee634
SHA1

c5aa49a322229956f8da5393d5a3cd752121ee82
SHA256

1337ca6ac8c0ea34ee10da208843fd16efe6b5b287f71cb57328c8362d81c68e
SHA512

a687fc323df26e5705302289c24c1c016332c88d177788b1a7fc42c6744a350be4bcce3b6a61d8030e69292386e59a430ec864a78a08205e61198635fc57e766
SSDEEP

24576:xswtem2m2vQ8GlsdPEwwS+pdoE2x5j/sYQo:nM9vQJgEw/x5b9

Score

N/A

Malware Config

Signatures

Files

1337ca6ac8c0ea34ee10da208843fd16efe6b5b287f71cb57328c8362d81c68e
.exe windows x86

3d736a16f1fc6a602025e17f11bc6fde

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStartupInfoW
GetFullPathNameA
VirtualAlloc
CreateEventA
DeleteFileW
TlsGetValue
lstrcpynA
UnmapViewOfFile
GetNumberFormatA
GetModuleFileNameW
lstrcpynA
FormatMessageA
lstrcpynA
GetLocaleInfoW
GetCurrentProcess
TlsAlloc
lstrcpynA
lstrlenA
GetPrivateProfileIntA
lstrcpynA
SetCurrentDirectoryA
GetModuleHandleA
TlsAlloc

wavemsp

DllGetClassObject
DllRegisterServer
DllUnregisterServer
DllCanUnloadNow

Sections

.text
Size: 12KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 800B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.edata
Size: 797KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ndata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy