fcbf6b43b22318c9b2736ad668521af4612b8024449766efca87e15ab77267a4 | Triage

Submit
Reports

Overview

overview

Static

static

fcbf6b43b2...a4.exe

windows7-x64

fcbf6b43b2...a4.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

fcbf6b43b22318c9b2736ad668521af4612b8024449766efca87e15ab77267a4.exe

Resource

win7-20221111-en

evasion persistence spyware stealer upx

windows7-x64

15 signatures

150 seconds

Behavioral task

behavioral2

Sample

fcbf6b43b22318c9b2736ad668521af4612b8024449766efca87e15ab77267a4.exe

Resource

win10v2004-20220812-en

evasion persistence spyware stealer upx

windows10-2004-x64

18 signatures

150 seconds

General

Target

fcbf6b43b22318c9b2736ad668521af4612b8024449766efca87e15ab77267a4
Size

171KB
MD5

188f5329c4fbd7b2a40a17890b58e996
SHA1

b80ecfa177f17d79fe3b711432b98ff97a30bff8
SHA256

fcbf6b43b22318c9b2736ad668521af4612b8024449766efca87e15ab77267a4
SHA512

ca2716c30358522ce61b5da0dd9af5b721e9a42108c34bc0a6719d154aa37c553740f654de9cbcecef4b70da0fd63baea80da70987c6c1d2e549fe21f9ae5a07
SSDEEP

3072:bpZ1xJdN20TRJlBjJktnBCWtmk2ZznMPMc+7rFlWVyFm4rstqOBwo75y:bpZ1HxdRGCnRn/rVEpw8Y

Score

N/A

Malware Config

Signatures

Files

fcbf6b43b22318c9b2736ad668521af4612b8024449766efca87e15ab77267a4
.exe windows x86

b5de70e30337e5c7bdf5076427ce342b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

Shell_NotifyIconA

gdi32

CreateFontIndirectA

kernel32

GetStringTypeA
SetStdHandle
LCMapStringW
AddAtomW
GetCurrentProcessId
IsBadCodePtr
HeapAlloc
LoadLibraryExA
LeaveCriticalSection
IsBadReadPtr
GetSystemTimeAsFileTime
FlushInstructionCache
DeleteCriticalSection
CloseHandle
GetCurrentProcess
GetLastError
EnumResourceNamesA
InterlockedIncrement
LCMapStringA
RegisterWaitForSingleObject
GetCurrentThreadId
InitializeCriticalSection
EnterCriticalSection
GetModuleHandleA
SetFilePointer
RaiseException
GetStringTypeW
InterlockedDecrement
FlushFileBuffers
SizeofResource

setupapi

CM_Get_Depth
CMP_WaitNoPendingInstallEvents
SetupDiGetDeviceRegistryPropertyW
CM_Get_DevNode_Status

gdiplus

GdipCreateHBITMAPFromBitmap
GdipCloneImage

Sections

.text
Size: 89KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 78KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy