eb4e898419bd7102833229dedef7d6d42168db2f04f734d5fcf6d3e647ad7719 | Triage

Submit
Reports

Overview

overview

6

Static

static

eb4e898419...19.exe

windows7-x64

6

eb4e898419...19.exe

windows10-2004-x64

6

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

eb4e898419bd7102833229dedef7d6d42168db2f04f734d5fcf6d3e647ad7719.exe

Resource

win7-20220812-en

bootkit persistence

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

eb4e898419bd7102833229dedef7d6d42168db2f04f734d5fcf6d3e647ad7719.exe

Resource

win10v2004-20220812-en

bootkit persistence

windows10-2004-x64

3 signatures

150 seconds

General

Target

eb4e898419bd7102833229dedef7d6d42168db2f04f734d5fcf6d3e647ad7719
Size

176KB
MD5

a0c7159a3165c9a08f687d5a972ef865
SHA1

9bb99ba72ef62523ad6558e60b4cee9aa498f940
SHA256

eb4e898419bd7102833229dedef7d6d42168db2f04f734d5fcf6d3e647ad7719
SHA512

dd4e5874d776a431df3f3ae80f4d7ffda499cff7ead7b1edd390a051500a45789436781979b0699a2da714fa711d7544df8c3e2d668710398008ac32f723c997
SSDEEP

3072:ntf/KHEH1aZyQTAoAQg5wV1ksgCpdd4ClvbIE0v4CeR/IX7Gunbf6Rkk8OmutM:ntf/KHEH1FQT9Uw0VqYClvUE0v4l/IXg

Score

N/A

Malware Config

Signatures

Files

eb4e898419bd7102833229dedef7d6d42168db2f04f734d5fcf6d3e647ad7719
.exe windows x86

47fd1c38c2a83f2d51ce32a826cfe1ac

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

FrameRect
HiliteMenuItem
InsertMenuItemW
RegisterHotKey
VkKeyScanA
GetDlgCtrlID
LoadBitmapA
SetWindowLongW
CharNextExA
GetClassInfoExW
ExitWindowsEx
ArrangeIconicWindows
MessageBoxExW

kernel32

VirtualFree
SetFileTime
DeleteFileW
DefineDosDeviceW
GetFileAttributesExA
lstrlenW
LocalReAlloc

comctl32

DestroyPropertySheetPage
ImageList_Remove

gdi32

OffsetViewportOrgEx
CreateDCW
GetDeviceCaps
PatBlt
CreateICW
CreateRectRgnIndirect

shlwapi

PathCommonPrefixW
ord29
StrCpyNW
PathMakePrettyW
StrCmpNIA

Exports

Exports

?bnyUcitXlqQmyfKTHwbksk@@YGHPADJ@Z
?TelossemIaYjScBZrIupri@@YGPADPANI@Z

Sections

.itext
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

CODE
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 139KB - Virtual size: 215KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 145B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy