setup[.]exe | Triage

Submit
Reports

Overview

overview

6

Static

static

setup.exe

windows7_x64

6

setup.exe

windows10-2004_x64

6

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

setup.exe

Resource

win7-20220414-en

bootkit persistence

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

setup.exe

Resource

win10v2004-20220414-en

bootkit persistence

windows10-2004_x64

0 signatures

0 seconds

General

Target

setup.exe
Size

668KB
MD5

10e4443ce2353752f039def6d498551d
SHA1

299fe4fe32de52b52371c88a9b58fb9493c4b2b2
SHA256

e6519b812c285d6ad48df92a70e235a28ee05d7c87e3b6dd8d4f1a29a9b77856
SHA512

57a3ee519b53c5ba93638b885d1cc519c601f99913044650c3ec4926df323b9379b06e57f8103582288776dee10532a4e25b6ce024995d20822c6b2784b8add6
SSDEEP

12288:IhLXUHKeKnCe60jGhik7Pm75Kwu/qDekJMhVe5OoOnMhMg8nzakeeQhX:SjUHpSjGhiaPm04iCGVeo5MhMgIakee

Score

N/A

Malware Config

Signatures

Files

setup.exe
.exe windows x86

09d0478591d4f788cb3e5ea416c25237

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

Sections

.text
Size: 660KB - Virtual size: 2.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy