73bf749f20bfe08c5e23a425c40130ca377c73ba7c9c687c94dc2c53c440b802 | Triage

Submit
Reports

Overview

overview

6

Static

static

73bf749f20...02.exe

windows7-x64

6

73bf749f20...02.exe

windows10-2004-x64

6

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

73bf749f20bfe08c5e23a425c40130ca377c73ba7c9c687c94dc2c53c440b802.exe

Resource

win7-20220812-en

bootkit persistence

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

73bf749f20bfe08c5e23a425c40130ca377c73ba7c9c687c94dc2c53c440b802.exe

Resource

win10v2004-20221111-en

bootkit persistence

windows10-2004-x64

2 signatures

150 seconds

General

Target

73bf749f20bfe08c5e23a425c40130ca377c73ba7c9c687c94dc2c53c440b802
Size

251KB
MD5

1231610232dd9346fe1d08fd22eeaf70
SHA1

bd1b60367fd3926c5b5f33c4cb92ad2b2b4d20b5
SHA256

73bf749f20bfe08c5e23a425c40130ca377c73ba7c9c687c94dc2c53c440b802
SHA512

de72130e4bf8bfc4185de63f37679ae5ec11ad6a35c18909cee3532935077ccd61d013ab33eafeb1777af1aecfad23b610a0afd9687d65d2c992c8741480f6a6
SSDEEP

6144:XFZ33Xmai0t0DELN9+S33vdRo1BZjuF3mkGz:XFZnXmZ0ueQS3/fo1/uNmkY

Score

N/A

Malware Config

Signatures

Files

73bf749f20bfe08c5e23a425c40130ca377c73ba7c9c687c94dc2c53c440b802
.exe windows x86

09d0478591d4f788cb3e5ea416c25237

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

Sections

.text
Size: 244KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy