setup[.]bin | Triage

Submit
Reports

Overview

overview

6

Static

static

setup.exe

windows7_x64

6

setup.exe

windows10-2004_x64

6

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

setup.exe

Resource

win7-20220414-en

bootkit persistence

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

setup.exe

Resource

win10v2004-20220414-en

bootkit persistence

windows10-2004_x64

0 signatures

0 seconds

General

Target

setup.bin
Size

669KB
MD5

3ee6ee71af56cf7112b4a5540e2368d3
SHA1

3c84954dd476cea0b560ea44e2e596e0c5b14bab
SHA256

b2a09ad10595641bc731dd1ced0cb493d47663894ba57da9a941031d1a73ce8a
SHA512

b4df0a62d5de0807a26c1125e8e315079648ff08751f42482723b28fcea072d5a6efbae624e055e5a806f56639fbd9cbd22aa328789e57748c31f724f974923e
SSDEEP

12288:JNHni7khn1aXleEcjPFIPDqFwE5YwaN/ywQwcENb+g2dMRNcPTF:TivlOebyNa009NCg2dMRNQTF

Score

N/A

Malware Config

Signatures

Files

setup.bin
.exe windows x86

09d0478591d4f788cb3e5ea416c25237

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

Sections

.text
Size: 661KB - Virtual size: 2.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy