f55ebf82f6d99ed95df3e5c0afd9a9978056fac37620c53f78722b50fde53a3e | Triage

Submit
Reports

Overview

overview

7

Static

static

1

f55ebf82f6...3e.exe

windows7-x64

3

f55ebf82f6...3e.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

f55ebf82f6d99ed95df3e5c0afd9a9978056fac37620c53f78722b50fde53a3e.exe

Resource

win7-20230220-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

f55ebf82f6d99ed95df3e5c0afd9a9978056fac37620c53f78722b50fde53a3e.exe

Resource

win10v2004-20230220-en

spyware stealer

windows10-2004-x64

5 signatures

150 seconds

General

Target

f55ebf82f6d99ed95df3e5c0afd9a9978056fac37620c53f78722b50fde53a3e
Size

350.0MB
MD5

fef5df418ad5bdd15165e1319c10e243
SHA1

1633c6d7e10a204c673d9db36eb0af90b0050a8a
SHA256

f55ebf82f6d99ed95df3e5c0afd9a9978056fac37620c53f78722b50fde53a3e
SHA512

04c844c2d8acefd015159ab89c6156635c8740a9f5936b9f96a2635c9b587cfd1fe5da2ef309ff023901b2251439ba16fee73b599fad891717466ed81d99f3a0
SSDEEP

49152:UMlPJhm9QQGLn9OJVJV3J+TFSagls4Hc:XhCQ/aTVZ+JSHlT8

Score

1^/10

Malware Config

Signatures

Files

f55ebf82f6d99ed95df3e5c0afd9a9978056fac37620c53f78722b50fde53a3e
.exe windows x86

cedcfaa2dde7099961e978ee69365581

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
SetLastError
TlsAlloc
TlsGetValue
TlsFree
TlsSetValue
EncodePointer
DecodePointer
Sleep
MultiByteToWideChar
CompareStringEx
WideCharToMultiByte
GetCurrentProcess
GetCommandLineW
GetCommandLineA
ExitProcess
CloseHandle
IsBadReadPtr
IsValidLocale
IsValidCodePage
HeapAlloc
HeapReAlloc
HeapSize
HeapFree

ole32

CoGetApartmentType
CoGetObjectContext

user32

SetClassLongW
GetClassLongW
DispatchMessageA
RegisterClassExW
CreateWindowExW
PeekMessageA
TranslateMessage
LoadCursorW
LoadIconW
DestroyWindow
MoveWindow
ShowWindow
BeginPaint
EndPaint
ReleaseDC
GetDC
MessageBoxW
MessageBoxA
UpdateWindow
InvalidateRect

gdi32

SelectObject
CreateCompatibleDC
DeleteDC
DeleteObject
SetBkMode
SetPixel
CreateSolidBrush
CreatePen

Sections

.text
Size: 2.4MB - Virtual size: 2.4MB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 640KB - Virtual size: 640KB

IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_MEM_READ

.rsrc
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy