60ebd672f498e24c6ba1c5e5057567ca795c143f0194e22e73739f8d1a67a10c | Triage

Submit
Reports

Overview

overview

1

Static

static

60ebd672f4...0c.exe

windows7-x64

1

60ebd672f4...0c.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

60ebd672f498e24c6ba1c5e5057567ca795c143f0194e22e73739f8d1a67a10c.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

60ebd672f498e24c6ba1c5e5057567ca795c143f0194e22e73739f8d1a67a10c.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

60ebd672f498e24c6ba1c5e5057567ca795c143f0194e22e73739f8d1a67a10c
Size

304KB
MD5

0be55d04dfeff7fe8799abb88615da4c
SHA1

589aaeda7f0e0a7b83993f903ff193a2160cd995
SHA256

60ebd672f498e24c6ba1c5e5057567ca795c143f0194e22e73739f8d1a67a10c
SHA512

f9dd17bea53b9c84abc41faa5319637dcd5ca8680a2c9764c906bb2342499d6155cc8541afa52fab4bd1099a1085bc3b63b1b588fdf8757c3d6ee3dd10650fb3
SSDEEP

6144:rcU244r21Cekd04B/xMB09lvWmfhsC2meRkxfPnO51144g1:rcU/114BeB8dfhR2med115g1

Score

N/A

Malware Config

Signatures

Files

60ebd672f498e24c6ba1c5e5057567ca795c143f0194e22e73739f8d1a67a10c
.exe windows x86

565b80f40cf932f160d86729fa435cba

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalSize
LocalFree
GetEnvironmentVariableW
lstrlenA
GetCommandLineA
CloseHandle
FindVolumeClose
GetStdHandle
GetExitCodeProcess
ResetEvent
VirtualAlloc
WriteFile
CreateEventA
GetPrivateProfileIntW
CreateMutexA
GlobalFree
ResumeThread
InterlockedExchange
GetACP
GetModuleHandleW

advapi32

RegEnumKeyW
IsTextUnicode
IsValidAcl
ClearEventLogA
RegCreateKeyExW
ControlService
IsValidSid
RegQueryValueW
RegDeleteValueA
RegDeleteKeyA
RegCloseKey
CloseEventLog
CreateServiceA

admparse

ResetAdmDirtyFlag
ResetAdmDirtyFlag
AdmClose
ResetAdmDirtyFlag
ResetAdmDirtyFlag

appwiz.cpl

ConfigStartMenu

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 352KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 295KB - Virtual size: 294KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy