69b68eeab60ec014c864cec2eb1d78112c61b1e5594ef2d093500b1e1e946bdd | Triage

Submit
Reports

Overview

overview

9

Static

static

69b68eeab6...dd.exe

windows7-x64

9

69b68eeab6...dd.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

69b68eeab60ec014c864cec2eb1d78112c61b1e5594ef2d093500b1e1e946bdd.exe

Resource

win7-20220812-en

discovery evasion

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

69b68eeab60ec014c864cec2eb1d78112c61b1e5594ef2d093500b1e1e946bdd.exe

Resource

win10v2004-20221111-en

discovery evasion persistence

windows10-2004-x64

7 signatures

150 seconds

General

Target

69b68eeab60ec014c864cec2eb1d78112c61b1e5594ef2d093500b1e1e946bdd
Size

999KB
MD5

4e412a6e91dec9a37838cc9c68459c44
SHA1

329d5fdc60e1a0d59f69a6d5f363d9605dfe6a73
SHA256

69b68eeab60ec014c864cec2eb1d78112c61b1e5594ef2d093500b1e1e946bdd
SHA512

ec691669c2dc7e726ddc8a26ad639b8ad503755bf1bbc7b6f9a808b595d1fbca51ead7c1b0db6a52f4f65747a9808cf597dccb38aa11e2a921e39d0f3a8cd112
SSDEEP

12288:Egic7CbTTx956dcSNFsK4tCJKpIhrFLBiuEI0PeeY:E3cebnbSaC2IhrFLBiuEIZn

Score

N/A

Malware Config

Signatures

Files

69b68eeab60ec014c864cec2eb1d78112c61b1e5594ef2d093500b1e1e946bdd
.exe windows x86

f273ef5cbe21d1d5e4acec28e1cece3b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAllocEx
CreateFileW
CreateFileA
Sleep
GetModuleHandleW

user32

LoadIconW
LoadIconA

advapi32

RegCreateKeyExW
RegSetValueExW
RegQueryValueW
RegQueryValueExW
RegQueryInfoKeyW
RegQueryInfoKeyA
RegOpenKeyW
RegOpenKeyExW
RegOpenKeyExA
RegOpenKeyA
RegQueryValueExA
GetUserNameW
RegCloseKey
RegDeleteKeyW
RegDeleteValueW
RegEnumKeyExW

Sections

.text
Size: 980KB - Virtual size: 980KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 756B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 560B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy