aeb5d8d534b14c91eff6d12acefc9e38c94fe86a5b1df0da90c7528033a9b2c1 | Triage

Submit
Reports

Overview

overview

8

Static

static

aeb5d8d534...c1.exe

windows7-x64

8

aeb5d8d534...c1.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

aeb5d8d534b14c91eff6d12acefc9e38c94fe86a5b1df0da90c7528033a9b2c1.exe

Resource

win7-20221111-en

spyware stealer upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

aeb5d8d534b14c91eff6d12acefc9e38c94fe86a5b1df0da90c7528033a9b2c1.exe

Resource

win10v2004-20221111-en

spyware stealer upx

windows10-2004-x64

3 signatures

150 seconds

General

Target

aeb5d8d534b14c91eff6d12acefc9e38c94fe86a5b1df0da90c7528033a9b2c1
Size

191KB
MD5

a98e5ec2cf2f24d251a25367f906bb0a
SHA1

75f344a0f53e3c45e948137fd868c94bd1f8e9e0
SHA256

aeb5d8d534b14c91eff6d12acefc9e38c94fe86a5b1df0da90c7528033a9b2c1
SHA512

48f997b53ab77013e3d3fae4166ab950f89ea7e21fb2ea52a6704d65e9ee31f70936644f7b1f4f64b9ba1b9629b6cf5dc2c7a409c170b0ccc9c14d99db6ce685
SSDEEP

3072:oD0nk2PnRpljeENyguaxlCr/buouJtK5EdfXeZg/A7RyJV0EagJVBXU2zmPU5y5I:9kSnnljX4gX+Lbuo5EdfX9AInaKVBXUQ

Score

N/A

Malware Config

Signatures

Files

aeb5d8d534b14c91eff6d12acefc9e38c94fe86a5b1df0da90c7528033a9b2c1
.exe windows x86

c3c1a7d66e1687aa160123c26b03742e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemTimeAsFileTime
GetAtomNameW
GetCurrentThreadId
LocalAlloc
InterlockedExchange
SetUnhandledExceptionFilter
InterlockedCompareExchange
GetCurrentProcess
Sleep
GetLocaleInfoW
QueryPerformanceCounter
GetModuleHandleW
RaiseException
GetTickCount
CreateProcessW
EnumResourceNamesA
GetStartupInfoW
QueryMemoryResourceNotification
UnhandledExceptionFilter
lstrlenA
IsDebuggerPresent
WideCharToMultiByte
GetACP
MultiByteToWideChar
GetCurrentProcessId
lstrlenW
GetEnvironmentVariableW
TerminateProcess
GetThreadLocale

winmm

mciSendCommandA
sndPlaySoundA

setupapi

InstallCatalog
CMP_WaitNoPendingInstallEvents
SetupDiGetDeviceRegistryPropertyW
CM_Get_DevNode_Status

oleacc

LresultFromObject
CreateStdAccessibleObject

shlwapi

PathAddBackslashA

advapi32

RegSetValueExA
RegCreateKeyExA
RegOpenKeyExA
RegCloseKey
RegQueryValueExA

Sections

.text
Size: 97KB - Virtual size: 97KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 90KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy