eb2ae037eae0805f1270cf5759d9f099a9052abb23134fd6341c104844b83020 | Triage

Submit
Reports

Overview

overview

Static

static

eb2ae037ea...20.exe

windows7-x64

eb2ae037ea...20.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

eb2ae037eae0805f1270cf5759d9f099a9052abb23134fd6341c104844b83020.exe

Resource

win7-20220812-en

pony discovery evasion persistence rat spyware stealer upx

windows7-x64

20 signatures

150 seconds

Behavioral task

behavioral2

Sample

eb2ae037eae0805f1270cf5759d9f099a9052abb23134fd6341c104844b83020.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

eb2ae037eae0805f1270cf5759d9f099a9052abb23134fd6341c104844b83020
Size

273KB
MD5

94ee82bbd71522ec7c738249f0fc9a5f
SHA1

628f41ff1631c5cfe9bff692525ac180f184a4f3
SHA256

eb2ae037eae0805f1270cf5759d9f099a9052abb23134fd6341c104844b83020
SHA512

bab65c99c9ae44c1fb72d720bdf951a01f483db7d2ce91e6b5115903284209624d7daf6d2d11ef268904c088d32bce9c5ae6eab8f1ecfb5129bf80f5a6cc7d1e
SSDEEP

6144:3La7SKNzRz5HbTLHDDtGD6GOU2m2whCZV8+TYKZvbq:3LASK5RtHbTTDDtGuk2xvjUKZzq

Score

N/A

Malware Config

Signatures

Files

eb2ae037eae0805f1270cf5759d9f099a9052abb23134fd6341c104844b83020
.exe windows x86

34b859fc3fbae8d4d291944dd9ca1443

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteFile
TerminateProcess
GlobalGetAtomNameW
HeapReAlloc
MultiByteToWideChar
SetUnhandledExceptionFilter
WriteConsoleA
IsDebuggerPresent
GetCurrentProcess
LeaveCriticalSection
SetFilePointer
GetCurrentProcessId
GetSystemTimeAsFileTime
LoadLibraryA
GetConsoleOutputCP
EnumResourceNamesA
GetLocaleInfoA
VirtualAlloc
UnhandledExceptionFilter
EnterCriticalSection
RtlUnwind
GetCPInfoExW
GetTimeFormatA
GetOEMCP
GetCPInfo
FreeLibrary
GetDateFormatA
GetACP
IsValidCodePage
HeapSize
InitializeCriticalSection
SetStdHandle
RaiseException

rpcrt4

RpcStringFreeA

shlwapi

SHCreateStreamOnFileA
PathIsFileSpecA
PathIsContentTypeA
PathAppendA
SHCreateStreamOnFileEx
PathCreateFromUrlW

Sections

.text
Size: 135KB - Virtual size: 274KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 135KB - Virtual size: 135KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy