8c6c96c3f2c38e642a247fc494e6c4d3bddf069bdf00f3ea17d7604b391368f7 | Triage

Submit
Reports

Overview

overview

8

Static

static

8c6c96c3f2...f7.exe

windows7-x64

8

8c6c96c3f2...f7.exe

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

8c6c96c3f2c38e642a247fc494e6c4d3bddf069bdf00f3ea17d7604b391368f7.exe

Resource

win7-20220901-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

8c6c96c3f2c38e642a247fc494e6c4d3bddf069bdf00f3ea17d7604b391368f7.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

8c6c96c3f2c38e642a247fc494e6c4d3bddf069bdf00f3ea17d7604b391368f7
Size

819KB
MD5

136b8a4d2a9a1046706b912675f3a491
SHA1

57d167d45124032f72154e070de18504e19fdd53
SHA256

8c6c96c3f2c38e642a247fc494e6c4d3bddf069bdf00f3ea17d7604b391368f7
SHA512

050747598c1202a3995753b5358af0f92f366660468899ec2d1dbdf3862e1e82312097e46918423aa54ae73ccba411556fd1f682e9790dbbb93c8ba729b5d664
SSDEEP

12288:IOaoiuxKsuLTbPtGPAGrhcDIjgCD00qMdfztrvET6sJ:eobKXfPtIgCDVBzpk

Score

N/A

Malware Config

Signatures

Files

8c6c96c3f2c38e642a247fc494e6c4d3bddf069bdf00f3ea17d7604b391368f7
.exe windows x86

2f2d7af3301a282e86e69c821222ead3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetThreadPriority
VirtualFree
ReadConsoleA
GetDiskFreeSpaceW
lstrcpynA
lstrcpynA
OpenMutexW
GetFileType
Heap32Next
GetModuleHandleA
GetPrivateProfileIntA
GetSystemTime
VirtualProtectEx
lstrcpynA
FindFirstVolumeW
lstrcpynA
GetDriveTypeW
lstrcmpW
lstrcpynA
lstrcpynA
WriteFile
GetCurrentDirectoryA
lstrcpynA
lstrcatA
GetCurrentProcess
GetVolumeInformationA
lstrcpynA
lstrcpynA
lstrcpynA

d3d8

ValidateVertexShader
DebugSetMute
Direct3DCreate8
ValidatePixelShader

Sections

.text
Size: 18KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 796KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy