f986338134156539888323a1e7f0d6006d3ba04e0bd62809c9b2ffb8e1b1f095 | Triage

Submit
Reports

Overview

overview

7

Static

static

f986338134...95.exe

windows7-x64

7

f986338134...95.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

f986338134156539888323a1e7f0d6006d3ba04e0bd62809c9b2ffb8e1b1f095.exe

Resource

win7-20220812-en

spyware stealer

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

f986338134156539888323a1e7f0d6006d3ba04e0bd62809c9b2ffb8e1b1f095.exe

Resource

win10v2004-20221111-en

spyware stealer

windows10-2004-x64

3 signatures

150 seconds

General

Target

f986338134156539888323a1e7f0d6006d3ba04e0bd62809c9b2ffb8e1b1f095
Size

3KB
MD5

254f3092aa3883110ecf66b2787d34a7
SHA1

02fa96b7282b00a889233a16f78762b6a89bacf4
SHA256

f986338134156539888323a1e7f0d6006d3ba04e0bd62809c9b2ffb8e1b1f095
SHA512

27d4d2bb7b949124b308e3d8e0f8fb69afcab1014eb7b7815ced104c81a0f4f408ac46265ff041db530d1b3f6057078f4cc1c2b64919f0adb12a424da09c9133

Score

N/A

Malware Config

Signatures

Files

f986338134156539888323a1e7f0d6006d3ba04e0bd62809c9b2ffb8e1b1f095
.exe windows x86

9979af719375b20b023c1a896d2518ba

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetCurrentDirectoryA
SetFilePointer
TerminateProcess
WaitForSingleObject
OpenProcess
lstrcatA
lstrlenA
CloseHandle
GetPrivateProfileStringA
GetCurrentDirectoryA
ExitProcess
CreateFileA
WriteFile

user32

SetProcessWindowStation
OpenWindowStationA
OpenInputDesktop
GetWindowThreadProcessId
FindWindowA
wsprintfA
SetThreadDesktop

advapi32

RegEnumKeyExA
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA
RegCloseKey

Sections

.text
Size: 1024B - Virtual size: 984B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 798B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy