e5062a466a604d9d7311bdf5bb939e51edcde40af8bd9a68efa3fbc6660316e4 | Triage

Submit
Reports

Overview

overview

8

Static

static

e5062a466a...e4.exe

windows7-x64

8

e5062a466a...e4.exe

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

e5062a466a604d9d7311bdf5bb939e51edcde40af8bd9a68efa3fbc6660316e4.exe

Resource

win7-20220812-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

e5062a466a604d9d7311bdf5bb939e51edcde40af8bd9a68efa3fbc6660316e4.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

3 signatures

150 seconds

General

Target

e5062a466a604d9d7311bdf5bb939e51edcde40af8bd9a68efa3fbc6660316e4
Size

819KB
MD5

454be75f65d3c6e01ce908b19e777a13
SHA1

103b6af1339ac7185fe6be55726347d355d7f402
SHA256

e5062a466a604d9d7311bdf5bb939e51edcde40af8bd9a68efa3fbc6660316e4
SHA512

02962e6a96edb9c2f675e92e9ea3d8645316d8272fadec6b1e60a234058dc440f33668ff858701d198f5188fb88adae710b1fd9049a78b56f41c02f7e38691eb
SSDEEP

12288:RCa5g925Opdh6cwQnn+RM2IQZXiQc7Z5WtYW8nz4tBU3yxWcgeOQtuNAIA0+n:RP5AOmWQGjZyQc7ZMeWUshWcHgNAIAp

Score

N/A

Malware Config

Signatures

Files

e5062a466a604d9d7311bdf5bb939e51edcde40af8bd9a68efa3fbc6660316e4
.exe windows x86

63bdda962dcea87ebedf0c85ef6e6b9b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Beep
Beep
GetCurrentThreadId
Beep
GetPrivateProfileIntA
SetThreadPriority
WriteConsoleW
SetCurrentDirectoryW
lstrcatA
SetLocaleInfoA
Beep
FormatMessageA
GetCommandLineA
GetFullPathNameW
VirtualQuery
TlsSetValue
DeleteFileW
Beep
ReleaseMutex
VirtualProtect
Beep
GetModuleFileNameW
Beep
GetModuleHandleA
TlsGetValue
Beep
lstrlenW
Beep
Beep

catsrv

OpenComponentLibraryTS
DllCanUnloadNow
CreateComponentLibraryTS
GetCatalogCRMClerk

Sections

.text
Size: 15KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 7KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.data
Size: 797KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy