9756bd28d6ba431dc1bb9379047998369175587b355961d22abc99a93b200b77 | Triage

Submit
Reports

Overview

overview

8

Static

static

9756bd28d6...77.exe

windows7-x64

8

9756bd28d6...77.exe

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

9756bd28d6ba431dc1bb9379047998369175587b355961d22abc99a93b200b77.exe

Resource

win7-20220812-en

spyware stealer upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

9756bd28d6ba431dc1bb9379047998369175587b355961d22abc99a93b200b77.exe

Resource

win10v2004-20221111-en

spyware stealer upx

windows10-2004-x64

3 signatures

150 seconds

General

Target

9756bd28d6ba431dc1bb9379047998369175587b355961d22abc99a93b200b77
Size

187KB
MD5

8790f62d9829873d259e56b5cfd8ebbc
SHA1

8fc62f614ac35442316631af285ff205732f7519
SHA256

9756bd28d6ba431dc1bb9379047998369175587b355961d22abc99a93b200b77
SHA512

0bd195231d415077d6661b63022622f684668c79a3cfb5b33a802afa1a3b5cd9aea4424cd737d061c34dc3b7807dbb9d408ddfc04c87112d1ec06f767cffb0f2
SSDEEP

3072:HjyRYhwOhstZa6SB2TlBN3cQ621fYxZfFZzbkwLCbEktod7dxo8+/cp7K6:HuRYVf6Ciln/62tQYFs7

Score

N/A

Malware Config

Signatures

Files

9756bd28d6ba431dc1bb9379047998369175587b355961d22abc99a93b200b77
.exe windows x86

59cfb20f35284b66e11a6499a0020729

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathAddBackslashA

msimg32

AlphaBlend
TransparentBlt

kernel32

lstrcpyA
GetAtomNameW
SetEvent
GetFullPathNameW
LeaveCriticalSection
OutputDebugStringA
InitializeCriticalSection
GetTimeZoneInformation
LoadLibraryW
GetTickCount
EnumResourceNamesA
WaitForSingleObject
GetFullPathNameA
GetProcAddress
EnterCriticalSection
DeleteCriticalSection
CreateThread
QueryMemoryResourceNotification
ResetEvent
IsDBCSLeadByte
LoadLibraryA
FileTimeToSystemTime
Sleep
GetTempPathA
FreeLibrary

setupapi

InstallCatalog
SetupDiGetDeviceRegistryPropertyW
CMP_WaitNoPendingInstallEvents
CM_Get_DevNode_Status

winmm

mciSendCommandA
sndPlaySoundA

Sections

.text
Size: 102KB - Virtual size: 102KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 81KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy