6382f2489ee677b7933a0806be8d92ac453f6ba8481d3a94044323ed21263046_unpacked | Triage

Submit
Reports

Overview

overview

1

Static

static

6382f2489e...ed.exe

windows7-x64

6382f2489e...ed.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

6382f2489ee677b7933a0806be8d92ac453f6ba8481d3a94044323ed21263046_unpacked.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

600 seconds

Behavioral task

behavioral2

Sample

6382f2489ee677b7933a0806be8d92ac453f6ba8481d3a94044323ed21263046_unpacked.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

600 seconds

General

Target

6382f2489ee677b7933a0806be8d92ac453f6ba8481d3a94044323ed21263046_unpacked
Size

33KB
MD5

946735064391617bb5667858b0cc79bf
SHA1

012a020c46fecda9fdc5c9b19b72794268e35597
SHA256

6a23cb3d1f6b09d36f9153585de92c2a4b35bf85c80192604cbdf9388ee653fa
SHA512

c837456e4bad73c9163c40a6193ff242b3ee1d9517ae430f09ac8df6a0f46b4199136189d7550b504104f6a0353bf6ef38292bd6040c87607ef4ddfac064501a
SSDEEP

768:IQc3xvlMFkPKdaW1krrpyGNbMGd0nay/yUXV1dAnMrm:fc3lmFkPKR1qpyGqGdgB/Vcn+m

Score

N/A

Malware Config

Signatures

Files

6382f2489ee677b7933a0806be8d92ac453f6ba8481d3a94044323ed21263046_unpacked
.exe windows x86

c2c38d285b12801dfe1b36451f180ee2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

ntoskrnl.exe

ExFreePool
IoCreateDevice
KeReleaseMutex
RtlInitUnicodeString
IoCreateSymbolicLink
IoDeleteDevice
ExAllocatePool
ZwQuerySystemInformation
IoCompleteRequest
KeWaitForSingleObject

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy