d747cb4e9c6c71f64e4b0351123ea9b076592916a49f0083124bb81e16d4d280 | Triage

Submit
Reports

Overview

overview

8

Static

static

d747cb4e9c...80.exe

windows7-x64

3

d747cb4e9c...80.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

d747cb4e9c6c71f64e4b0351123ea9b076592916a49f0083124bb81e16d4d280.exe

Resource

win7-20220901-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

d747cb4e9c6c71f64e4b0351123ea9b076592916a49f0083124bb81e16d4d280.exe

Resource

win10v2004-20221111-en

spyware stealer upx

windows10-2004-x64

5 signatures

150 seconds

General

Target

d747cb4e9c6c71f64e4b0351123ea9b076592916a49f0083124bb81e16d4d280
Size

106KB
MD5

bdf9daa4a96cd2092d9e367a90dbb5b8
SHA1

2da7d676d0a31e8662676b23c0bcc671e512ec16
SHA256

d747cb4e9c6c71f64e4b0351123ea9b076592916a49f0083124bb81e16d4d280
SHA512

a9fdd7bfffded7b7f81c8f506d34fb3d7ac874583249075007cc83ca0bd6da47a92eea6da69d600521e88ae3beb4ac3f443bfa7bab0c42cfb5da0df1b9e5c254
SSDEEP

3072:6LSTzf3FuOfSNFnv70p+ty1mgLHyszcyl:mSUGS7nv7dtcDB

Score

N/A

Malware Config

Signatures

Files

d747cb4e9c6c71f64e4b0351123ea9b076592916a49f0083124bb81e16d4d280
.exe windows x86

99633c78cc5cfa68002a159a1fd12b83

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

LookupPrivilegeValueA
OpenServiceA
OpenSCManagerA
GetUserNameA
OpenProcessToken

kernel32

GlobalAlloc
SetFileAttributesW
lstrlenA
FindClose
GetVolumeInformationA
IsValidLocale
GetModuleHandleW
GetCurrentDirectoryA
GlobalUnlock
CreateDirectoryA
Sleep
GetDriveTypeA
WinExec
_llseek
OpenMutexW
SetFileTime
GetConsoleMode
GlobalLock
DosDateTimeToFileTime
FindFirstFileA
CreateDirectoryExA
LocalFileTimeToFileTime
SetStdHandle
_lopen
_lread
_lwrite
TlsSetValue
GetTimeZoneInformation
CreateDirectoryA
lstrcmpW
QueryPerformanceFrequency
SetConsoleCursorInfo
SetCurrentDirectoryA
lstrcatA
GlobalHandle
GetUserDefaultUILanguage
_lcreat
lstrcpyA
VirtualUnlock
DosDateTimeToFileTime
ExitProcess

ole32

CoInitialize
CoUninitialize
CLSIDFromProgID
CoCreateInstance

user32

ChangeDisplaySettingsA
GetKeyNameTextA
MessageBoxA
ShowWindow

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 85KB - Virtual size: 179KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy