68e42107666f699f3c379aa6574d54f61847f614a9632dd1754caa020f0e3045 | Triage

Submit
Reports

Overview

overview

1

Static

static

68e4210766...45.exe

windows7-x64

1

68e4210766...45.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

68e42107666f699f3c379aa6574d54f61847f614a9632dd1754caa020f0e3045.exe

Resource

win7-20220901-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

68e42107666f699f3c379aa6574d54f61847f614a9632dd1754caa020f0e3045.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

68e42107666f699f3c379aa6574d54f61847f614a9632dd1754caa020f0e3045
Size

305KB
MD5

68f90ed02b6ff3b6aa4adc0676efdb60
SHA1

5c156449f66d0744598f0291475791bcee384c76
SHA256

68e42107666f699f3c379aa6574d54f61847f614a9632dd1754caa020f0e3045
SHA512

c0e1bc29df9bc01d7a4ac1de931c5233f62d659452791e003c7929da74962ff0d81cb9b5d803598a005411995a0aac01c04c66a0c772ad4832211b136e0b93bd
SSDEEP

6144:mqTmCqj6OpZQSIarpjpISDpf8EDcHDykOgrquc2XKjC4F4p:mqTRi4adjXDpeyGNcISW

Score

N/A

Malware Config

Signatures

Files

68e42107666f699f3c379aa6574d54f61847f614a9632dd1754caa020f0e3045
.exe windows x86

6b2996ed98a1b53340f4e4a50f480b4b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

VirtualProtect
GetLocaleInfoA
GetStdHandle
SetFilePointer
IsBadReadPtr
lstrlenA
HeapDestroy
CreateFileW
GetModuleFileNameA
CreateDirectoryA
GetCurrentThreadId
GetModuleHandleA
LeaveCriticalSection
GetPriorityClass
CreateMutexW
GetVersionExA
IsValidLocale
ResumeThread
SuspendThread
GlobalSize
GetProcessHeap
HeapSize
CreateFileW
SetEvent
GetFileAttributesW

user32

DispatchMessageA
DestroyMenu
LoadCursorA
DrawIcon
wsprintfA
DestroyIcon
GetWindowLongA
GetWindowTextA
MessageBoxW
SetRect
SetCursor
PeekMessageA
GetWindowLongA

dpnet

DllCanUnloadNow
DllRegisterServer
DllUnregisterServer
DllGetClassObject

advapi32

IsValidAcl

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 298KB - Virtual size: 298KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy