62ae61702643b65fa4cc4c2d4d03007f22cad0146df4610919615b4b8f405842 | Triage

Submit
Reports

Overview

overview

Static

static

62ae617026...42.exe

windows7-x64

62ae617026...42.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

62ae61702643b65fa4cc4c2d4d03007f22cad0146df4610919615b4b8f405842.exe

Resource

win7-20220901-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

62ae61702643b65fa4cc4c2d4d03007f22cad0146df4610919615b4b8f405842.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

62ae61702643b65fa4cc4c2d4d03007f22cad0146df4610919615b4b8f405842
Size

117KB
MD5

2b6e57ad284e0b0b9625ac54286be0c0
SHA1

4bfdc7fbecb61f131a21c157a684e8d50e18bfa2
SHA256

62ae61702643b65fa4cc4c2d4d03007f22cad0146df4610919615b4b8f405842
SHA512

acf7d7f0f2c5b2fc48c8ed1bf22ef7920accf07df11376385145c86f5a81adc9679efef98f09467b5acab1e60bce230215bc90e3128f821e9a0ef601b2bcf7df
SSDEEP

1536:H7n5f+5bF43UTCn4Zj5onImKiFUXbW5t10EW6YkaTMyB3PwklHk:t8bF436CnQArVFJt10EW6qwyB3P7K

Score

N/A

Malware Config

Signatures

Files

62ae61702643b65fa4cc4c2d4d03007f22cad0146df4610919615b4b8f405842
.exe windows x86

dce917216146bf7ab09de55fd9cd50a9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetPriorityClass
GetModuleHandleA
CloseHandle
lstrcmpiA
GetDiskFreeSpaceA
GetPrivateProfileIntW
CreateEventA
CloseHandle
OpenMutexA
GetPrivateProfileIntW
lstrcmpA
CreateDirectoryW
LoadLibraryExW
GetDiskFreeSpaceA
GetFileAttributesA
GetPrivateProfileSectionW
HeapCreate
GetExitCodeProcess
SetFilePointer
CloseHandle
WaitForMultipleObjects
InterlockedExchange
SetEnvironmentVariableW

certcli

CADeleteCA
CADeleteCertType
CAEnumCertTypes
CAEnumFirstCA

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.orpc
Size: 113KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy