8ec0f4514b6fd47c468de688acfd10c7aa64e679179b7ec8b9e2dfb46bcf6604 | Triage

Submit
Reports

Overview

overview

8

Static

static

8ec0f4514b...04.exe

windows7-x64

8

8ec0f4514b...04.exe

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

8ec0f4514b6fd47c468de688acfd10c7aa64e679179b7ec8b9e2dfb46bcf6604.exe

Resource

win7-20220812-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

8ec0f4514b6fd47c468de688acfd10c7aa64e679179b7ec8b9e2dfb46bcf6604.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

3 signatures

150 seconds

General

Target

8ec0f4514b6fd47c468de688acfd10c7aa64e679179b7ec8b9e2dfb46bcf6604
Size

814KB
MD5

6f82e03619070c45416f98168aa5a80b
SHA1

357d7a8ba39a7c665d4c5119c4a2ac6020c85bf7
SHA256

8ec0f4514b6fd47c468de688acfd10c7aa64e679179b7ec8b9e2dfb46bcf6604
SHA512

297504f3a7331ca233ca9d97e5ac8ab21e6a39d52cd1250a6187a1ee4a25aabc78c4fc9292577df560875cdb784508786216f0b7bd70577220027f67615428cb
SSDEEP

24576:49H+8AsV9R7CuzhWsk8Cy6URtZV6dYkpqoPcvCU:49edoc0WskQR0P0v

Score

N/A

Malware Config

Signatures

Files

8ec0f4514b6fd47c468de688acfd10c7aa64e679179b7ec8b9e2dfb46bcf6604
.exe windows x86

828b6ec884f29da4e9d81dc5100caed9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleFileNameW
SetCurrentDirectoryW
lstrcpynW
VirtualProtectEx
GetModuleHandleA
GetCurrentThread
GetNumberFormatW
VirtualFree
GetCommandLineA
lstrlenA
CreateEventW
FormatMessageA
TlsGetValue
DeleteFileW
GetLocaleInfoW
GetFullPathNameW
TlsFree
GetPrivateProfileIntA
GetStringTypeA

wmadmod

DllCanUnloadNow
DllRegisterServer
DllGetClassObject
DllUnregisterServer

Sections

.text
Size: 13KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.pdata
Size: 2KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 797KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 432B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy