2ad6511c5f3d645703cdafa0c09bed46709631f4b27be2bd906e856e868792be | Triage

Submit
Reports

Overview

overview

6

Static

static

2ad6511c5f...be.dll

windows7-x64

6

2ad6511c5f...be.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

2ad6511c5f3d645703cdafa0c09bed46709631f4b27be2bd906e856e868792be.dll

Resource

win7-20220901-en

bootkit discovery persistence

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

2ad6511c5f3d645703cdafa0c09bed46709631f4b27be2bd906e856e868792be.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

2ad6511c5f3d645703cdafa0c09bed46709631f4b27be2bd906e856e868792be
Size

124KB
MD5

813282bcdafe5a666b13dc93e0b82964
SHA1

3f11e61fcbe382c6f27b2ebfcd3ca39d558ac0a3
SHA256

2ad6511c5f3d645703cdafa0c09bed46709631f4b27be2bd906e856e868792be
SHA512

7acf354a8c060b647f4222cb2a7961c055980909b9cf57ca5df610a04608a68be1587c4dd856c1ab465f5408cc603f938847b8f6755299fe8e780053bab98437
SSDEEP

1536:jslkTW2Mg/v9F2zm5UFQukjeOUX8OB8nK3VQFrUp3Up88aTaTgC2uhCCrV1IboQ5:0eMg5U63jefsOB0ECyBUhrTeCrnIbB

Score

N/A

Malware Config

Signatures

Files

2ad6511c5f3d645703cdafa0c09bed46709631f4b27be2bd906e856e868792be
.dll windows x86

d71ff74ccfe699004afc74c243196b27

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

AllocateAndInitializeSid
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
SetFileSecurityA

version

GetFileVersionInfoA

Sections

.text
Size: 88KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 566B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 488B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy