e5a4a3a27a66bcac8972616c4172910c55d1edb92931b8bf06a84f57e9398016 | Triage

Submit
Reports

Overview

overview

1

Static

static

e5a4a3a27a...16.exe

windows7-x64

e5a4a3a27a...16.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

e5a4a3a27a66bcac8972616c4172910c55d1edb92931b8bf06a84f57e9398016.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

e5a4a3a27a66bcac8972616c4172910c55d1edb92931b8bf06a84f57e9398016.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

e5a4a3a27a66bcac8972616c4172910c55d1edb92931b8bf06a84f57e9398016
Size

12KB
MD5

505e8d3c0c6e48e97bc813a3d2faa2be
SHA1

104a1269961124b0a0c5a748dcaf7d758cdd99e6
SHA256

e5a4a3a27a66bcac8972616c4172910c55d1edb92931b8bf06a84f57e9398016
SHA512

fcd68f93fc4313846d30568aaa00d3fe5cfea1a003539c54a8d5c94aa853edff539a5ef67241b93333879c884a1719b2c61359ba78f7d6da0b76a27357b29fdd
SSDEEP

384:64wAo60CgjXSzY4cy+zGV+jqeqZixWQXY+w:SAo60Cg+pcLzGVYVHhYn

Score

N/A

Malware Config

Signatures

Files

e5a4a3a27a66bcac8972616c4172910c55d1edb92931b8bf06a84f57e9398016
.exe windows x86

68344963461bda51e0c1c1b95f6bc3d8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

scsiport.sys

ScsiPortGetPhysicalAddress
ScsiPortLogError
ScsiPortStallExecution
ScsiPortReadPortUchar
ScsiPortWritePortUchar
ScsiPortGetDeviceBase
ScsiPortConvertUlongToPhysicalAddress
ScsiPortGetBusData
ScsiPortFreeDeviceBase
ScsiPortReadRegisterUchar
ScsiPortNotification
ScsiPortGetLogicalUnit
ScsiPortGetVirtualAddress
ScsiPortMoveMemory
ScsiPortCompleteRequest
ScsiPortGetUncachedExtension
ScsiPortInitialize

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 256B - Virtual size: 136B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 128B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 640B - Virtual size: 572B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 384B - Virtual size: 298B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy