2d616f28587d99db3b0742b7148ede3be09cb92add12668f39fa7417a6b55e8d | Triage

Submit
Reports

Overview

overview

8

Static

static

2d616f2858...8d.exe

windows7-x64

8

2d616f2858...8d.exe

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

2d616f28587d99db3b0742b7148ede3be09cb92add12668f39fa7417a6b55e8d.exe

Resource

win7-20220812-en

bootkit persistence

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

2d616f28587d99db3b0742b7148ede3be09cb92add12668f39fa7417a6b55e8d.exe

Resource

win10v2004-20220812-en

bootkit persistence

windows10-2004-x64

6 signatures

150 seconds

General

Target

2d616f28587d99db3b0742b7148ede3be09cb92add12668f39fa7417a6b55e8d
Size

48KB
MD5

22afc71cf474051ca8570b802fec35f0
SHA1

8e034f0b1460a81e1054eb79503e0a358175a4c6
SHA256

2d616f28587d99db3b0742b7148ede3be09cb92add12668f39fa7417a6b55e8d
SHA512

923f0ba45f1b86ee86a1c52c78b78471fec65117add740043ae2fa640a101a96f87a6e45ca2c7cd71ffd595b7f13282b0efbc5d7c7acfcc13f4625e6a4b6c17e
SSDEEP

768:E0NqHlSpNRyZ17AK8R65ynbnFCwuBNC6WGjQKtBbCrRHMqSCTE9SQPbe41L:1AFSpNRGKK8R6Axnuu5+Q+hw4d

Score

N/A

Malware Config

Signatures

Files

2d616f28587d99db3b0742b7148ede3be09cb92add12668f39fa7417a6b55e8d
.exe windows x86

c5c70d06ed73206b407de00f24fd96b7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
ConnectNamedPipe
CreateFileA
CreateNamedPipeA
CreateThread
DisconnectNamedPipe
ExitThread
FlushFileBuffers
GetExitCodeThread
GetModuleHandleA
ReadFile
SetUnhandledExceptionFilter
Sleep
VirtualAlloc
VirtualFree
VirtualProtect
WaitForMultipleObjects
WriteFile

Sections

.text
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 534B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 134B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy