a2fee43f75210e6e3381515222fdb3d056029a0a894fba536294d38f8fc9f207 | Triage

Submit
Reports

Overview

overview

1

Static

static

a2fee43f75...07.exe

windows7-x64

a2fee43f75...07.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

a2fee43f75210e6e3381515222fdb3d056029a0a894fba536294d38f8fc9f207.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

a2fee43f75210e6e3381515222fdb3d056029a0a894fba536294d38f8fc9f207.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

a2fee43f75210e6e3381515222fdb3d056029a0a894fba536294d38f8fc9f207
Size

26KB
MD5

6ebada5d24892c686903393629caf3d0
SHA1

4a3826abe67345f7c68eaeabbebe21dc06947e10
SHA256

a2fee43f75210e6e3381515222fdb3d056029a0a894fba536294d38f8fc9f207
SHA512

aa9eb622bb300a4519353b566489ff11b1e87857907e0353b4b145fb49c2bbe30e5fd226700c4da05908f7890a0f4615451b7c3d8c0679541e4d9d4b6bf33b45
SSDEEP

768:gH5Vsc6tCZdTniK1IFnW8IY4G8pQ5Uz2Q/H6jLbC9a9OJzII:gZVsc6tCZViGiW8IG8K5UsLeKyzL

Score

N/A

Malware Config

Signatures

Files

a2fee43f75210e6e3381515222fdb3d056029a0a894fba536294d38f8fc9f207
.exe windows x86

63976d908c1372926cfeaa403c12a8c0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

strncmp
RtlInitUnicodeString
ObfDereferenceObject
RtlCopyUnicodeString
swprintf
_strnicmp
RtlAnsiStringToUnicodeString
wcscat
wcscpy
MmIsAddressValid
_wcsnicmp
wcslen
strncpy
_except_handler3
ExFreePool
_snprintf
ExAllocatePoolWithTag
MmGetSystemRoutineAddress
_stricmp
IofCompleteRequest
ZwClose
ZwOpenKey

Sections

.text
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 896B - Virtual size: 866B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy