b3ffd0992a8b11a553f719794f41d4405e9b9611d18030bc74783ecccde7206f | Triage

Submit
Reports

Overview

overview

8

Static

static

b3ffd0992a...6f.exe

windows7-x64

8

b3ffd0992a...6f.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

b3ffd0992a8b11a553f719794f41d4405e9b9611d18030bc74783ecccde7206f.exe

Resource

win7-20220812-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

b3ffd0992a8b11a553f719794f41d4405e9b9611d18030bc74783ecccde7206f.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

b3ffd0992a8b11a553f719794f41d4405e9b9611d18030bc74783ecccde7206f
Size

817KB
MD5

ecc82a866f6c0e3085cdbb000ce782e7
SHA1

159749295ace94cad106a866b5758d81b0338483
SHA256

b3ffd0992a8b11a553f719794f41d4405e9b9611d18030bc74783ecccde7206f
SHA512

c177c0e8a22c752e91e6db6dffff1e5574f7a5f0218845750eadc8a3cce5559f503ec8fd5a9e81d85b0351f69a3b61041c89a3d4badbcdec9edcb94b889535e0
SSDEEP

24576:+zS8f6OfQWC5iaRZKIuQ7G0pS1fgOJtG:+DSw5m8IxmVJ

Score

N/A

Malware Config

Signatures

Files

b3ffd0992a8b11a553f719794f41d4405e9b9611d18030bc74783ecccde7206f
.exe windows x86

330fae6182ceb2f32151673d9d69e445

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetCurrentThreadId
FormatMessageW
lstrcpynA
VirtualFree
GetCommandLineW
ReadConsoleA
lstrcpynA
lstrcatA
SetThreadPriority
lstrcpynA
lstrcpynA
GetCurrentDirectoryA
GetModuleHandleA
lstrcpynA
OpenMutexW
VirtualProtectEx
CreateDirectoryW
lstrcpynA
lstrcpynA
lstrcpynA
DeleteFileW
lstrcmpA
lstrcpynA
GetFileSize
GetDiskFreeSpaceW
GetPrivateProfileIntA
ReadFile
GetFileType
lstrcpynA

certcli

CAEnumNextCA
CAFindByCertType
CAEnumFirstCA
CADeleteCertType

Sections

.text
Size: 17KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 795KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy