655b38a3b7ceada415c31c392c947fa7f530786989361a7d20fd0abd57ffa1ee | Triage

Submit
Reports

Overview

overview

1

Static

static

655b38a3b7...ee.exe

windows7-x64

655b38a3b7...ee.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

655b38a3b7ceada415c31c392c947fa7f530786989361a7d20fd0abd57ffa1ee.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

655b38a3b7ceada415c31c392c947fa7f530786989361a7d20fd0abd57ffa1ee.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

655b38a3b7ceada415c31c392c947fa7f530786989361a7d20fd0abd57ffa1ee
Size

27KB
MD5

50ebcf9458e67ea86e9dd8cf5209ac60
SHA1

5c1f931f73462085ba0a05c8417b8afa87889975
SHA256

655b38a3b7ceada415c31c392c947fa7f530786989361a7d20fd0abd57ffa1ee
SHA512

2478c7f05072a312e8558d873790a29bde13dd1f4ebfdc6857a31dbc7577dfb8c83988d31bce84b784440782e273980b11846115d625be84f4a1af54304a8b09
SSDEEP

384:eh/ehxgGwQ2YM1SyXKMIhXHWMv+N3SDXGE1nYdFE6n5JAvUIi7HTDaN5Kvrfl:epAoYM1HUHWMs3SDXGGeFr5YUIwT5

Score

N/A

Malware Config

Signatures

Files

655b38a3b7ceada415c31c392c947fa7f530786989361a7d20fd0abd57ffa1ee
.exe windows x86

8b4b129e65492c2201be38dcabeba9a3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

IoGetDeviceInterfaceAlias
IoWMIQueryAllDataMultiple
ZwMakeTemporaryObject
ExAllocatePool
ExAcquireResourceSharedLite
memset

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 128B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 256B - Virtual size: 220B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 128B - Virtual size: 48B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy