47cd3e662ffd31d4085f8d4dcad272a32abdef6e29059409b346796795e9edb3 | Triage

Submit
Reports

Overview

overview

1

Static

static

47cd3e662f...b3.exe

windows7-x64

47cd3e662f...b3.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

47cd3e662ffd31d4085f8d4dcad272a32abdef6e29059409b346796795e9edb3.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

47cd3e662ffd31d4085f8d4dcad272a32abdef6e29059409b346796795e9edb3.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

47cd3e662ffd31d4085f8d4dcad272a32abdef6e29059409b346796795e9edb3
Size

6KB
MD5

dc8f1d438e7d946d446ac289a34bb3c4
SHA1

062b36f60a4cad2acc98913b8a8a83f6ed472e4e
SHA256

47cd3e662ffd31d4085f8d4dcad272a32abdef6e29059409b346796795e9edb3
SHA512

a93e5a6fcd9e535359c5bd676576dc2913aa59b2ec4a98a871a44695e77ae7f33bc2f4d7961bb8b48ee778caf51aa01ec76568034350e608aac12fbeeea3b42c
SSDEEP

96:491n3UK7qTsDC8Elk5o7kEEEJtd4X8g1E8n1EfE6:U1EQqKGkAGBVn

Score

N/A

Malware Config

Signatures

Files

47cd3e662ffd31d4085f8d4dcad272a32abdef6e29059409b346796795e9edb3
.exe windows x86

fecb9a2ffaff2a61c997a4276c35402e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

memset
KeSetEvent
IoDeleteSymbolicLink
RtlInitUnicodeString
IofCompleteRequest
IofCallDriver
IoStartPacket
IoCreateDevice
KeInitializeEvent
IoDetachDevice
PoCallDriver
PoStartNextPowerIrp
IoCreateSymbolicLink
KeTickCount
IoAttachDeviceToDeviceStack
KeWaitForSingleObject
IoDeleteDevice

hal

KfLowerIrql
KfRaiseIrql

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 227B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 20B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 1024B - Virtual size: 900B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 896B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 208B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy