9bcc37f771c9b7f1a641cba4077cfa83b25399085960de4ecb73811f249d7f78 | Triage

Submit
Reports

Overview

overview

8

Static

static

9bcc37f771...78.exe

windows7-x64

8

9bcc37f771...78.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

9bcc37f771c9b7f1a641cba4077cfa83b25399085960de4ecb73811f249d7f78.exe

Resource

win7-20220812-en

spyware stealer upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

9bcc37f771c9b7f1a641cba4077cfa83b25399085960de4ecb73811f249d7f78.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

9bcc37f771c9b7f1a641cba4077cfa83b25399085960de4ecb73811f249d7f78
Size

184KB
MD5

7f108921fe8d0a513d10458c37f2346e
SHA1

320ba25c4849e463d878e41b091d2b349308789d
SHA256

9bcc37f771c9b7f1a641cba4077cfa83b25399085960de4ecb73811f249d7f78
SHA512

712d270ac6090e76f6731a9185df49f002b6c13ad9e1477e0b0c741f0a9ca2d2743b5799b2cd8bc72ac3964a83d5de13d6a91412efe95ce75f11b5ff66a7f984
SSDEEP

3072:fPajLWyvf7rKQi+w7/9gYdZQyw0lC7wndIyW7mnfYJGn/VFzOwbpe+/rgaSywP:fPafWyLr9VO9gcZQyy72//nfYEnthO88

Score

N/A

Malware Config

Signatures

Files

9bcc37f771c9b7f1a641cba4077cfa83b25399085960de4ecb73811f249d7f78
.exe windows x86

f6e4d3fddeebe2cd5684b0c6ed6fcd9d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoGetMalloc
CoTaskMemFree
CoCreateInstance
CoTaskMemAlloc
StringFromGUID2
CoTaskMemRealloc

gdi32

SelectObject
GetDeviceCaps
DeleteObject
GetTextMetricsA
GetTextExtentPointA
CreateFontIndirectA

kernel32

FreeEnvironmentStringsW
SetHandleCount
GetCPInfoExA
GetStartupInfoA
GetThreadLocale
GetFileType
GetVersionExA
MultiByteToWideChar
InitializeCriticalSection
GetCPInfo
RaiseException
GetOEMCP
InterlockedIncrement
HeapSize
EnumResourceTypesA
GetEnvironmentStrings
GetStdHandle
UnhandledExceptionFilter
GetLocaleInfoA
TlsSetValue
LeaveCriticalSection
GetACP
QueryPerformanceCounter
TlsGetValue
WriteFile
FreeEnvironmentStringsA
LoadLibraryW
lstrlenW
GetLastError
WideCharToMultiByte
EnterCriticalSection
GetTickCount
GetEnvironmentStringsW
DeleteCriticalSection
InterlockedExchange
GetCurrentProcessId

msimg32

AlphaBlend
TransparentBlt

Sections

.text
Size: 109KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy