9cd64b52aa23c5bf8d31e6c5a46c762baaae46cdd704c8150d456483ae26de7e | Triage

Submit
Reports

Overview

overview

Static

static

9cd64b52aa...7e.exe

windows7-x64

6

9cd64b52aa...7e.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

9cd64b52aa23c5bf8d31e6c5a46c762baaae46cdd704c8150d456483ae26de7e.exe

Resource

win7-20220812-en

bootkit persistence

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

9cd64b52aa23c5bf8d31e6c5a46c762baaae46cdd704c8150d456483ae26de7e.exe

Resource

win10v2004-20220901-en

bootkit evasion persistence

windows10-2004-x64

11 signatures

150 seconds

General

Target

9cd64b52aa23c5bf8d31e6c5a46c762baaae46cdd704c8150d456483ae26de7e
Size

747KB
MD5

0a761a42df19f37b549f2d66ef97c4d9
SHA1

4d0ab7235271344e2b2508694068c102550b6b11
SHA256

9cd64b52aa23c5bf8d31e6c5a46c762baaae46cdd704c8150d456483ae26de7e
SHA512

3035209e7c8426d8a85366b55c3a97f1abf8e92a41f13bdd0921720dc22e6d63787dc773690e90801d2a4cc548a5b4674321e8a0d4a15f9bc658b096ae6e62fa
SSDEEP

12288:85g44HH0xRmmIDemFDPuD0HOuxpPGAAoi57J6:85gTHHAgNPuYjuJ6

Score

N/A

Malware Config

Signatures

Files

9cd64b52aa23c5bf8d31e6c5a46c762baaae46cdd704c8150d456483ae26de7e
.exe windows x86

171a31ba05345078ef101a808b269841

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

powrprof

ReadPwrScheme

pdh

PdhAddCounterA

psapi

EnumProcessModules

version

GetFileVersionInfoSizeA

shfolder

SHGetFolderPathA

user32

UnpackDDElParam

gdi32

CombineRgn

comdlg32

ChooseColorA

winspool.drv

ClosePrinter

advapi32

RegQueryValueExA

shell32

DragQueryFileA

comctl32

ImageList_ReplaceIcon

oledlg

ord8

ole32

CoFreeUnusedLibraries

olepro32

ord253

oleaut32

SysFreeString

Sections

.MyCrack
Size: 283KB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MyCrack
Size: 463KB - Virtual size: 464KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

bnvccpl
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy