6ced1f84afd8bbca5c9c4357ade9f08c060ecfc0e3d661bc7853e9505515c8d7 | Triage

Submit
Reports

Overview

overview

6

Static

static

6ced1f84af...d7.exe

windows7-x64

6ced1f84af...d7.exe

windows10-2004-x64

6

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

6ced1f84afd8bbca5c9c4357ade9f08c060ecfc0e3d661bc7853e9505515c8d7.exe

Resource

win7-20220812-en

bootkit persistence

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

6ced1f84afd8bbca5c9c4357ade9f08c060ecfc0e3d661bc7853e9505515c8d7.exe

Resource

win10v2004-20220812-en

bootkit persistence

windows10-2004-x64

1 signatures

150 seconds

General

Target

6ced1f84afd8bbca5c9c4357ade9f08c060ecfc0e3d661bc7853e9505515c8d7
Size

369KB
MD5

60e4d867530b34ce1ac5be9a15e74c20
SHA1

2c009e874c0793867be962fc94369d1cd0bf711e
SHA256

6ced1f84afd8bbca5c9c4357ade9f08c060ecfc0e3d661bc7853e9505515c8d7
SHA512

9ae6e59f9f5f3f7255346f48c68c78919dfc7174fdbe9bce3ae09ee990aa57763f67b0522f1ef0bf74c16a465a5b7fbe9dabd1536cc9c533341f601c9ff39745
SSDEEP

24:etGSX+AtmnnT759NI46zNRy/U1njfw2rDVRIXPLSSjd4oZBb2JHkHh2/QSqkaAX1:6rmnnn5feNr1njf/XIXPGwhyEBEQS5f

Score

N/A

Malware Config

Signatures

Files

6ced1f84afd8bbca5c9c4357ade9f08c060ecfc0e3d661bc7853e9505515c8d7
.exe windows x86

280f9d9b9c498c98834fc477064fd240

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

AdjustTokenPrivileges
LookupPrivilegeValueA
OpenProcessToken

kernel32

CloseHandle
CreateFileA
FlushFileBuffers
GetCurrentProcess
GetLastError
SetFilePointerEx
WriteFile

user32

ExitWindowsEx
MessageBoxA

Sections

.text
Size: 1024B - Virtual size: 668B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.flat
Size: 366KB - Virtual size: 366KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE

.rdata
Size: 512B - Virtual size: 36B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 40B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 508B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy