92e6120c4dbe549ce5c7f35959ccc55c5ce1b23241915d216a835d498dbb6e0d | Triage

Submit
Reports

Overview

overview

8

Static

static

92e6120c4d...0d.exe

windows7-x64

8

92e6120c4d...0d.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

92e6120c4dbe549ce5c7f35959ccc55c5ce1b23241915d216a835d498dbb6e0d.exe

Resource

win7-20221111-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

92e6120c4dbe549ce5c7f35959ccc55c5ce1b23241915d216a835d498dbb6e0d.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

92e6120c4dbe549ce5c7f35959ccc55c5ce1b23241915d216a835d498dbb6e0d
Size

819KB
MD5

eb71c2dc472dc3812bdc381e93b4dfb7
SHA1

e8119272f139966a67be08857a843b2a45a5b863
SHA256

92e6120c4dbe549ce5c7f35959ccc55c5ce1b23241915d216a835d498dbb6e0d
SHA512

5b26ad7aee8b338941bce4a10ed0c5414f42c0856bad389b54e8590eeebe1dc440fd55ed9dcb79bf0b869df73460835b42fcd6b2d18cba0193bd3218c98c7248
SSDEEP

12288:keJMbTmZcgQ6t2tWejFCrDiAV7/OWL6XZfDPzshHquZ5k81ysyp0WpdvK:kQMeGgQ6tykiAV56X9PAJqIeNpY

Score

N/A

Malware Config

Signatures

Files

92e6120c4dbe549ce5c7f35959ccc55c5ce1b23241915d216a835d498dbb6e0d
.exe windows x86

3dccbc426e08da2636f826a1b34aedb0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetCurrentThreadId
lstrcpynA
GetSystemTime
VirtualProtectEx
lstrcpynA
ReadFile
lstrcpynA
VirtualFree
lstrcatA
GetVolumeInformationA
lstrcpynA
SetThreadPriority
GetDiskFreeSpaceW
ReadConsoleA
lstrcpynA
FormatMessageW
OpenMutexW
Heap32First
GetModuleHandleA
lstrcpynA
lstrcpynA
lstrcpynA
GetCurrentDirectoryA
GetFileType
GetDriveTypeA
lstrcmpA
lstrcpynA
lstrcpynA
GetPrivateProfileIntA

cmdial32

InetDialHandler
RasCustomDialDlg
RasCustomDial
AutoDialFunc

Sections

.text
Size: 18KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ddata
Size: 795KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy