6361dc61f8156a0ccca716789aa1af0607a4a35af286780829a14df1cc01df95 | Triage

Submit
Reports

Overview

overview

Static

static

6361dc61f8...95.exe

windows7-x64

6361dc61f8...95.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

6361dc61f8156a0ccca716789aa1af0607a4a35af286780829a14df1cc01df95.exe

Resource

win7-20221111-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

6361dc61f8156a0ccca716789aa1af0607a4a35af286780829a14df1cc01df95.exe

Resource

win10v2004-20220901-en

pony collection discovery rat spyware stealer

windows10-2004-x64

8 signatures

150 seconds

General

Target

6361dc61f8156a0ccca716789aa1af0607a4a35af286780829a14df1cc01df95
Size

121KB
MD5

27283dfc6a9aed09afc2f6b63217d730
SHA1

d3e5314609337e1f8d1737ce390e7b33ce285903
SHA256

6361dc61f8156a0ccca716789aa1af0607a4a35af286780829a14df1cc01df95
SHA512

29c4ca924d9a370262df38403ac1c99366303d68ac00c2d25cc5fa786630e908b0aae1a1750f82e96d8eeefcde9eff40703492d5012129e2e306dac6fa79407f
SSDEEP

1536:PMbq7wIZpj1KZuZLorAEWTd9Ihr6bKxBC8wG4mXLpnDS2wj5/Qn7K/ZI:PMyZ/j1K6UrATIYWxE8wbm7Je5Um/ZI

Score

N/A

Malware Config

Signatures

Files

6361dc61f8156a0ccca716789aa1af0607a4a35af286780829a14df1cc01df95
.exe windows x86

ed97c6083bf27c1f115a83041e3bbd54

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteFileEx
GetDiskFreeSpaceW
InterlockedIncrement
Heap32First
lstrcmpA
FindResourceW
SetEnvironmentVariableA
GetACP
lstrcpyW
ExitProcess
LoadLibraryA
GetDiskFreeSpaceW
InterlockedDecrement
GetPrivateProfileIntA
GetPrivateProfileSectionA
VirtualAllocEx
GetPrivateProfileIntA
GetCurrentDirectoryA
GetExitCodeProcess
GetModuleHandleW
GetLongPathNameA
WaitForSingleObject
GetStringTypeW

apphelp

AllowPermLayer
ApphelpCheckIME
SdbCreateMsiTransformFile
ApphelpCheckExe

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dbg
Size: 117KB - Virtual size: 116KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy