d0ec83775195dd5bb3db24eb72dd23bc0324e9ecc1cf2a277154db229650b239 | Triage

Submit
Reports

Overview

overview

1

Static

static

d0ec837751...39.exe

windows7-x64

d0ec837751...39.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

d0ec83775195dd5bb3db24eb72dd23bc0324e9ecc1cf2a277154db229650b239.exe

Resource

win7-20220901-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

d0ec83775195dd5bb3db24eb72dd23bc0324e9ecc1cf2a277154db229650b239.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

d0ec83775195dd5bb3db24eb72dd23bc0324e9ecc1cf2a277154db229650b239
Size

54KB
MD5

8a07a413f20722de0645d6c542fc8312
SHA1

600bd49cef5daa48d2cf602f73461682d2662e1a
SHA256

d0ec83775195dd5bb3db24eb72dd23bc0324e9ecc1cf2a277154db229650b239
SHA512

42e46a87d78ac7939094a0a0cc14d0b45f29064e20647db8fb03a00596cf4eb95a0c406994958c94ba5eee354b4329c143f3123e440a69a0a5cd20942a834411
SSDEEP

1536:nuWJ/iWwpDcS+MBj9QEPUvryPyyv2zh2gTrFHUWjP88nI:nue/GDcxMBjKEPuylUh2QrF0epI

Score

N/A

Malware Config

Signatures

Files

d0ec83775195dd5bb3db24eb72dd23bc0324e9ecc1cf2a277154db229650b239
.exe windows x86

8c0b7b11ac0ccc1609aeed918d802e99

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

PoStartNextPowerIrp
NtQuerySystemInformation
ExFreePoolWithTag
IoDeleteSymbolicLink
ProbeForWrite
ZwSetValueKey
KeDelayExecutionThread
RtlCopyUnicodeString
RtlIntegerToUnicodeString
wcscpy
KeReleaseMutex
IoWMIRegistrationControl
KefAcquireSpinLockAtDpcLevel
IoDeleteDevice
RtlAnsiStringToUnicodeString
IoGetDeviceObjectPointer
ExAllocatePoolWithTag
RtlInitAnsiString
KeQueryTimeIncrement
IoReleaseCancelSpinLock
IoSetDeviceInterfaceState
ExFreePool
IoAllocateErrorLogEntry
KeTickCount

Sections

.text
Size: 51KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 128B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 640B - Virtual size: 616B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 896B - Virtual size: 776B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 384B - Virtual size: 258B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy