tmp | Triage

Submit
Reports

Overview

overview

6

Static

static

tmp.exe

windows7-x64

6

tmp.exe

windows10-2004-x64

6

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

tmp.exe

Resource

win7-20220812-en

bootkit persistence

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

tmp.exe

Resource

win10v2004-20220812-en

bootkit persistence

windows10-2004-x64

5 signatures

150 seconds

General

Target

tmp
Size

433KB
MD5

981c43758f31b10457e90cb1098343ce
SHA1

d740aef0e9f5f0c6bb765e7068a31995c9cfed4b
SHA256

71c28486f56397ef0bf97896d2db6f3274aa7cc1d3bcec08bafe2b1f5fb2b694
SHA512

1d1e38d7818511503ccb7ee6a84b17bb7ddf491d150bc6a51062e15fcce8db1469f4762dba6a5e912e37e5dbb49699adb8ee2b6c60cb4b248f72c5f1777c11d6
SSDEEP

3072:dqYYYzYYYAYYYUYYYqYYYvYYYCYYYbYYYhYYYtYYYYZYYYY0YYYYcYYYYDYYYYmn:

Score

N/A

Malware Config

Signatures

Files

tmp
.exe windows x86

7d02939e6a41048f291a2cc011d8a86c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

gdi32

BitBlt

kernel32

AddAtomA
Beep
CopyFileA
CreateFileA
ExitProcess
FindAtomA
GetAtomNameA
GetCommandLineA
GetModuleFileNameA
GetModuleHandleA
GetStartupInfoA
SetUnhandledExceptionFilter
Sleep
WriteFile

msvcrt

__getmainargs
__p__environ
__p__fmode
__set_app_type
_assert
_beginthreadex
_cexit
_iob
_onexit
_setmode
abort
atexit
free
malloc
memset
rand
signal
system

user32

DrawIcon
FindWindowA
GetDesktopWindow
GetSystemMetrics
GetWindowDC
GetWindowRect
LoadIconA
MessageBoxA
MoveWindow
SetCursorPos
ShowWindow

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 508B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 352B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 423KB - Virtual size: 423KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy