a08a13e9cd21af72ececbf9a6f41e1536a5f894664e77d6903ae02cf79f4645d | Triage

Submit
Reports

Overview

overview

8

Static

static

a08a13e9cd...5d.exe

windows7-x64

8

a08a13e9cd...5d.exe

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

a08a13e9cd21af72ececbf9a6f41e1536a5f894664e77d6903ae02cf79f4645d.exe

Resource

win7-20221111-en

spyware stealer upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

a08a13e9cd21af72ececbf9a6f41e1536a5f894664e77d6903ae02cf79f4645d.exe

Resource

win10v2004-20220901-en

spyware stealer upx

windows10-2004-x64

3 signatures

150 seconds

General

Target

a08a13e9cd21af72ececbf9a6f41e1536a5f894664e77d6903ae02cf79f4645d
Size

191KB
MD5

80fc325784a1144bd14eea067910f6e6
SHA1

035e0fb5e9cb56d7439966b972081d0a71c38bb9
SHA256

a08a13e9cd21af72ececbf9a6f41e1536a5f894664e77d6903ae02cf79f4645d
SHA512

7c750f896bb879633f0b96c6baf898dad4e9b3cff875d2eb83506f5fe0f6da062247f31bd72dbde91c118a14c3b375e95eea22fc21b5c17efebcd377dc0a645d
SSDEEP

3072:rguiy/xU9mBlNzyfrIwWfAwMd/VQzKw/rT9R95frEg5l471yjx8RbuvF/L4OIiA:rguiH96lNArNWHMd/VQGw//95xQ71yjC

Score

N/A

Malware Config

Signatures

Files

a08a13e9cd21af72ececbf9a6f41e1536a5f894664e77d6903ae02cf79f4645d
.exe windows x86

0fadc1b58fde7fdc0958a55b88f4a39b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetAtomNameW
TlsGetValue
GetACP
SetFilePointer
TlsSetValue
RtlUnwind
GetTimeFormatA
WriteConsoleA
GetOEMCP
GetCPInfo
VirtualAlloc
MultiByteToWideChar
EnumResourceNamesA
IsValidCodePage
SetStdHandle
GetCPInfoExA
GetDateFormatA
GetConsoleOutputCP
GetLocaleInfoA
TlsAlloc
HeapSize
HeapReAlloc
RaiseException

shlwapi

UrlUnescapeW
PathIsContentTypeW
PathAppendW
PathIsFileSpecW
SHCreateStreamOnFileEx
PathCreateFromUrlA

occache

FindControlClose

Sections

.text
Size: 92KB - Virtual size: 227KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 97KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy