bd18f7e47301fe07a0f183eb31c7514eef42b58294b870ec6d9e7953156db879 | Triage

Submit
Reports

Overview

overview

1

Static

static

bd18f7e473...79.exe

windows7-x64

bd18f7e473...79.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

bd18f7e47301fe07a0f183eb31c7514eef42b58294b870ec6d9e7953156db879.exe

Resource

win7-20220901-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

bd18f7e47301fe07a0f183eb31c7514eef42b58294b870ec6d9e7953156db879.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

bd18f7e47301fe07a0f183eb31c7514eef42b58294b870ec6d9e7953156db879
Size

35KB
MD5

d87e70da3b15752d1e44eb227f9fef8b
SHA1

c57aee0f58ab88ecc356ad284ca51cbef69a451d
SHA256

bd18f7e47301fe07a0f183eb31c7514eef42b58294b870ec6d9e7953156db879
SHA512

441918232b695e3627588318c91bf384de88fc24e205e912081b8917e8c9b862cb1bdaf9206b5fd4075b508bf79276014d32adbc991503002608e71fc935723a
SSDEEP

768:AuLMn6caIqTq6phSp0GHzBpTAiO0tiLi0sbUaJHVsiEfH26:Aug6cuSpftOddiT1JHEe6

Score

N/A

Malware Config

Signatures

Files

bd18f7e47301fe07a0f183eb31c7514eef42b58294b870ec6d9e7953156db879
.exe windows x86

808f7192a1c7ca383db7d056fededbb5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

IofCompleteRequest
IoDeleteDevice
IoDeleteSymbolicLink
RtlInitUnicodeString
ZwOpenFile
ZwReadFile
ZwWriteFile
ZwClose
NtBuildNumber
ExFreePoolWithTag
ExAllocatePoolWithTag
ZwQuerySystemInformation
DbgPrint
ZwCreateFile
wcslen
IoCreateSymbolicLink
IoCreateDevice
KeTickCount
KeBugCheckEx

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 256B - Virtual size: 234B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 991B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 640B - Virtual size: 548B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 384B - Virtual size: 324B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy