38206e0095a73da84b7e72609564508594a5b8c2fc4109ba04d7060c1bd9c789 | Triage

Submit
Reports

Overview

overview

1

Static

static

38206e0095...89.exe

windows7-x64

38206e0095...89.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

38206e0095a73da84b7e72609564508594a5b8c2fc4109ba04d7060c1bd9c789.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

38206e0095a73da84b7e72609564508594a5b8c2fc4109ba04d7060c1bd9c789.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

38206e0095a73da84b7e72609564508594a5b8c2fc4109ba04d7060c1bd9c789
Size

26KB
MD5

0d451b1f78c6602f92ade56ebb146360
SHA1

8cb5ff979c2b05912a32b7ec786fd149f10191ae
SHA256

38206e0095a73da84b7e72609564508594a5b8c2fc4109ba04d7060c1bd9c789
SHA512

f2ff5b3a8cda800f04c4498d36d62a20f5666dd414db2a158dd47261970db939a203c6e33475d9a7f75904fde7ece462c26d1122e418b0e751e41475c3d7fb55
SSDEEP

768:tdtYV3TbjeOft62nCzSD4JsGQkz8QVFeLjk+5a7RAyc7IM8:DtY3Tbj3ftlC2aKkAqe/k+5aOyU

Score

N/A

Malware Config

Signatures

Files

38206e0095a73da84b7e72609564508594a5b8c2fc4109ba04d7060c1bd9c789
.exe windows x86

d359b4c8a42acde7acd3d34a7f908deb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

MmIsAddressValid
MmGetSystemRoutineAddress
RtlInitUnicodeString
_strnicmp
wcslen
ZwClose
ZwOpenKey
strncmp
swprintf
RtlAnsiStringToUnicodeString
ObfDereferenceObject
wcscat
wcscpy
_itow
RtlCopyUnicodeString
_except_handler3
_stricmp
strncpy
ExFreePool
_snprintf
ExAllocatePoolWithTag
_wcsnicmp
IofCompleteRequest

Sections

.text
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 896B - Virtual size: 882B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy