86afffe054ef9ac604b91052f9f516bcfea36c8340b2d19916ebf3268c1baca4 | Triage

Submit
Reports

Overview

overview

1

Static

static

86afffe054...a4.exe

windows7-x64

86afffe054...a4.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

86afffe054ef9ac604b91052f9f516bcfea36c8340b2d19916ebf3268c1baca4.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

86afffe054ef9ac604b91052f9f516bcfea36c8340b2d19916ebf3268c1baca4.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

86afffe054ef9ac604b91052f9f516bcfea36c8340b2d19916ebf3268c1baca4
Size

54KB
MD5

676352dfb88d57741337ae70148f049d
SHA1

1ba6b26aaa9177db22edf7106d5223cce249d03b
SHA256

86afffe054ef9ac604b91052f9f516bcfea36c8340b2d19916ebf3268c1baca4
SHA512

1d14f0a26ebaef6bc0b1d0558a0e643913aabdeec13542d27fbf54d8692266fe70e5b15298b3a313d1a44ac02231b984fa6dfff881d3b053263e3ceb402bb8b4
SSDEEP

1536:3uWJ/iWwpDcS+MBj9QEPUvryPyyv2zh2gTrFHUWjP8bnI:3ue/GDcxMBjKEPuylUh2QrF0eeI

Score

N/A

Malware Config

Signatures

Files

86afffe054ef9ac604b91052f9f516bcfea36c8340b2d19916ebf3268c1baca4
.exe windows x86

8c0b7b11ac0ccc1609aeed918d802e99

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

PoStartNextPowerIrp
NtQuerySystemInformation
ExFreePoolWithTag
IoDeleteSymbolicLink
ProbeForWrite
ZwSetValueKey
KeDelayExecutionThread
RtlCopyUnicodeString
RtlIntegerToUnicodeString
wcscpy
KeReleaseMutex
IoWMIRegistrationControl
KefAcquireSpinLockAtDpcLevel
IoDeleteDevice
RtlAnsiStringToUnicodeString
IoGetDeviceObjectPointer
ExAllocatePoolWithTag
RtlInitAnsiString
KeQueryTimeIncrement
IoReleaseCancelSpinLock
IoSetDeviceInterfaceState
ExFreePool
IoAllocateErrorLogEntry
KeTickCount

Sections

.text
Size: 51KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 128B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 640B - Virtual size: 616B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 896B - Virtual size: 776B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 384B - Virtual size: 258B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy