cba9974ea8613c73a92c9a6bb762fd4cea4bfdc93bf1f3073d496eb6dad2a874 | Triage

Submit
Reports

Overview

overview

Static

static

cba9974ea8...74.exe

windows7-x64

cba9974ea8...74.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

cba9974ea8613c73a92c9a6bb762fd4cea4bfdc93bf1f3073d496eb6dad2a874.exe

Resource

win7-20221111-en

persistence spyware stealer upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

cba9974ea8613c73a92c9a6bb762fd4cea4bfdc93bf1f3073d496eb6dad2a874.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

cba9974ea8613c73a92c9a6bb762fd4cea4bfdc93bf1f3073d496eb6dad2a874
Size

180KB
MD5

03e5d3e365cfb9d3ed6f8c4fea7b3299
SHA1

a17a554d953853d109a8bc8a9e8e7fd1a9e8bdbc
SHA256

cba9974ea8613c73a92c9a6bb762fd4cea4bfdc93bf1f3073d496eb6dad2a874
SHA512

be5b2e1f5402c917d4b6f913e23fd561fc4dff264f251aa5decfdc7ae724bbf33b7fca4eac7518b508f1ebfd8268806414188ab2aa247b1e6dc0d58f95f70d20
SSDEEP

3072:+NthX2O82Z2ky5SRjYiYb7QiLpn8FIhceuK/o+62vHA4B1oCPvB3deMk:+NtBXc0jYn/Qi6+hceuGyEHAq1jx

Score

N/A

Malware Config

Signatures

Files

cba9974ea8613c73a92c9a6bb762fd4cea4bfdc93bf1f3073d496eb6dad2a874
.exe windows x86

8dc445202cdbe726a1c7ee7fa955eb12

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

oleacc

LresultFromObject
CreateStdAccessibleObject

shell32

SHGetMalloc
SHGetPathFromIDListA
SHGetSpecialFolderLocation

kernel32

RaiseException
VirtualQueryEx
SetUnhandledExceptionFilter
lstrlenA
lstrlenW
IsDebuggerPresent
ExitProcess
UnhandledExceptionFilter
LocalAlloc
MultiByteToWideChar
EnumResourceNamesW
GetLocaleInfoA
WideCharToMultiByte
CreateProcessA
GetSystemTimeAsFileTime
GetCPInfoExA
GetACP
GetModuleHandleA
GetEnvironmentVariableA
InterlockedExchange
GetCurrentProcess
GetThreadLocale

ole32

StringFromIID
CoTaskMemFree
ProgIDFromCLSID
StringFromCLSID

advapi32

RegOpenKeyExA
RegEnumKeyExA
RegOpenKeyA
RegCreateKeyExA
RegQueryValueExA
RegDeleteKeyA
RegCloseKey
RegSetValueExA

Sections

.text
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 388KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy