05aa77273fbe5efb245560f519cddded[.]exe | Triage

Submit
Reports

Overview

overview

Static

static

1

05aa77273f...ed.exe

windows7-x64

05aa77273f...ed.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

05aa77273fbe5efb245560f519cddded.exe

Resource

win7-20230220-en

pony collection discovery rat spyware stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

05aa77273fbe5efb245560f519cddded.exe

Resource

win10v2004-20230220-en

pony collection discovery rat spyware stealer

windows10-2004-x64

8 signatures

150 seconds

General

Target

05aa77273fbe5efb245560f519cddded.exe
Size

114KB
MD5

05aa77273fbe5efb245560f519cddded
SHA1

15ad11fb49503dbd6c0d2f793532dab50a9d228c
SHA256

f3b60b9fb81de5df1dad130e2f384654f4cfc532bfe38f9719b6e43647334dc4
SHA512

627292a4a6dc29757023900f8cc3ff3fd103b36b4c913d764d58384e1d9358026d3bd7e0bc1be85f933f44740345c1d1c7190ce6dd46084b36b77472bbbe41ba
SSDEEP

3072:eaGd0JWGpj28eQ/KR2i6hPPGf9fdLi7Ulq0SN:Y0JWGlpeQiR2fPSfdNlq00

Score

1^/10

Malware Config

Signatures

Files

05aa77273fbe5efb245560f519cddded.exe
.exe windows x86

65bf5cfe10d8c98f9683c9cde4453332

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFilePointer
CloseHandle
DeleteFileA
DeleteFileA
GetModuleHandleW
GetProcessHeap
GetConsoleTitleA
CreateDirectoryA
CreateFileMappingW
GetStringTypeW
DeleteFileA
HeapCreate
SetEnvironmentVariableA
SetCurrentDirectoryA
GetModuleHandleA
GetStdHandle
GetStringTypeW
GetLastError
HeapFree
GetShortPathNameW
GetProcessHeap
GetVersion
GetExitCodeProcess

mstscax

DllUnregisterServer
DllCanUnloadNow
DllRegisterServer
DllGetTscCtlVer

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dataz
Size: 107KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rs
Size: 1024B - Virtual size: 544B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy