6db62dd8dd030ef514337fb3c7f147c0665efbcc37b1ff97707ed74094a8835d | Triage

Submit
Reports

Overview

overview

8

Static

static

6db62dd8dd...5d.exe

windows7-x64

8

6db62dd8dd...5d.exe

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

6db62dd8dd030ef514337fb3c7f147c0665efbcc37b1ff97707ed74094a8835d.exe

Resource

win7-20220812-en

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

6db62dd8dd030ef514337fb3c7f147c0665efbcc37b1ff97707ed74094a8835d.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

11 signatures

150 seconds

General

Target

6db62dd8dd030ef514337fb3c7f147c0665efbcc37b1ff97707ed74094a8835d
Size

1.3MB
MD5

9452b43c872f4faee376be781cc806ac
SHA1

9c4cd526673d65da48b338254a7026a705e54bee
SHA256

6db62dd8dd030ef514337fb3c7f147c0665efbcc37b1ff97707ed74094a8835d
SHA512

4a4ef2cc77a4915c76f002050b0c54ca5494d0e972e95c912cc7a59c47a5861069a1b933ba862fc315bd1e185fea66dee04475157d7b16e421d156889c7d751e
SSDEEP

24576:Z2cJ+//0wDXIxwbDbNyGYb8hDymv6+zQ6ZbpzN0OUQmCRkRuRD:Z2cJqPLV/F9v65UaOUQmCuRuR

Score

N/A

Malware Config

Signatures

Files

6db62dd8dd030ef514337fb3c7f147c0665efbcc37b1ff97707ed74094a8835d
.exe windows x64

234ecae781a7845c972346b1edefdddc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
GetProcAddress

shlwapi

StrStrA

user32

GetDC

gdi32

BitBlt

advapi32

FreeSid

shell32

SHChangeNotify

version

VerQueryValueW

setupapi

CM_Get_Parent

Exports

Exports

LoadEnvi
MemoryCompare
MemoryCopy
MemorySet
WndProc1
WndProc1_
WndProc2
WndProc2_
WndProc3
WndProc3_

Sections

.MPRESS1
Size: 1.2MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 111KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy