2e66def394fa19c8a44ec2d24ab0326d74c8e95f5cef141ebe74487695b92b6f | Triage

Submit
Reports

Overview

overview

8

Static

static

2e66def394...6f.exe

windows7-x64

8

2e66def394...6f.exe

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

2e66def394fa19c8a44ec2d24ab0326d74c8e95f5cef141ebe74487695b92b6f.exe

Resource

win7-20220812-en

discovery persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

2e66def394fa19c8a44ec2d24ab0326d74c8e95f5cef141ebe74487695b92b6f.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

3 signatures

150 seconds

General

Target

2e66def394fa19c8a44ec2d24ab0326d74c8e95f5cef141ebe74487695b92b6f
Size

816KB
MD5

f0db47236624a4ce8ebf99eb7859760f
SHA1

3f66479d75ee10458a6798b19fb8a4731c4217af
SHA256

2e66def394fa19c8a44ec2d24ab0326d74c8e95f5cef141ebe74487695b92b6f
SHA512

0b12a01ce01e25a093c01c636a6b68fdc5ed9b9fcb546c52b7034e1f012dc28e0644491986e395a56e961451ec8d2926333261a2bbfb325d00239597e6b58904
SSDEEP

24576:TNN40LPw3hXNmo5nEE7gHgJR01BiOfQRpWP4Ndd:7JPCNmtKDJCHiOf2phd

Score

N/A

Malware Config

Signatures

Files

2e66def394fa19c8a44ec2d24ab0326d74c8e95f5cef141ebe74487695b92b6f
.exe windows x86

0458ea527335770c3b90217784bdbc83

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
WriteConsoleW
GetFullPathNameW
SetThreadPriority
VirtualQuery
SetCurrentDirectoryW
Beep
Beep
DeleteFileW
Beep
VirtualProtect
TlsSetValue
GetPrivateProfileIntA
Beep
Beep
lstrcmpA
lstrcatA
FormatMessageA
GetModuleHandleA
Beep
Beep
GetModuleFileNameW
GetCurrentThreadId
TlsGetValue
Beep
Beep
Beep
ReleaseMutex
SetLocaleInfoW

catsrvut

CGMIsAdministrator
RegDBRestore
StartMTSTOCOM
RegDBBackup

Sections

.TEXT
Size: 15KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ndata
Size: 1024B - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.vdata
Size: 797KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.jdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy