59926731d48e17c312784b0669fe4040f6e22b3a3287c328e3c77b9984a5890c | Triage

Submit
Reports

Overview

overview

1

Static

static

59926731d4...0c.exe

windows7-x64

59926731d4...0c.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

59926731d48e17c312784b0669fe4040f6e22b3a3287c328e3c77b9984a5890c.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

59926731d48e17c312784b0669fe4040f6e22b3a3287c328e3c77b9984a5890c.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

59926731d48e17c312784b0669fe4040f6e22b3a3287c328e3c77b9984a5890c
Size

22KB
MD5

92065a531631d3fe1ffaa8be132290f1
SHA1

6670760bce6951768e28aa0f333a028205192eb7
SHA256

59926731d48e17c312784b0669fe4040f6e22b3a3287c328e3c77b9984a5890c
SHA512

18c1fc616fb48d136f749f141b7dafe02b0b798afeeb5b2356fe453cb72b9bb48d5d08abf66ae11e4ec473c82f240c85a00087948787b9326c6cd589019678d1
SSDEEP

384:zFho7VT92KyQ6tWRSW0qSo0LGDl2UuKHy7fWRSW:zFhsVhT7NYCSGDlf

Score

N/A

Malware Config

Signatures

Files

59926731d48e17c312784b0669fe4040f6e22b3a3287c328e3c77b9984a5890c
.exe windows x86

6e40f3a6ef141843a227b0c0aa4c6e43

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

IoCreateDevice
RtlInitUnicodeString
ExAllocatePoolWithTag
ExFreePoolWithTag
_aullrem
KeInitializeEvent
IoAcquireCancelSpinLock
NtClose
ZwClose
NtDeviceIoControlFile
ZwDeviceIoControlFile
NtCreateFile
ZwCreateFile
MmMapLockedPagesSpecifyCache
IoReleaseCancelSpinLock
IofCompleteRequest
KeInitializeSpinLock
IoDeleteDevice

hal

KfReleaseSpinLock
ExAcquireFastMutex
ExReleaseFastMutex
KfAcquireSpinLock

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 256B - Virtual size: 197B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 640B - Virtual size: 628B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.szvw
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1016B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 384B - Virtual size: 354B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy