9b920ab5f896634938ece9200f49c7359fc456dc615548f3b8e31ddf5aad0b34 | Triage

Submit
Reports

Overview

overview

8

Static

static

9b920ab5f8...34.exe

windows7-x64

8

9b920ab5f8...34.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

9b920ab5f896634938ece9200f49c7359fc456dc615548f3b8e31ddf5aad0b34.exe

Resource

win7-20220812-en

bootkit persistence upx

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

9b920ab5f896634938ece9200f49c7359fc456dc615548f3b8e31ddf5aad0b34.exe

Resource

win10v2004-20220812-en

bootkit persistence upx

windows10-2004-x64

8 signatures

150 seconds

General

Target

9b920ab5f896634938ece9200f49c7359fc456dc615548f3b8e31ddf5aad0b34
Size

3.6MB
MD5

52e380fe04c4f0e4701a9519331e5d7a
SHA1

0cf2ad14f8a80a6087bb3a15f5e8d247614b5ebd
SHA256

9b920ab5f896634938ece9200f49c7359fc456dc615548f3b8e31ddf5aad0b34
SHA512

5dec2c67f299afc8be098d260bed2c1e050c5066fe324b2342908ddb470192ca6a2abdf730a8f1febc8e1d8731d7dc8d4d3e3164f51bb9f46ff813e2ef73d367
SSDEEP

49152:MoSQwAwtt+s8KuqGaX0ToIBAUZLYiwVJVoVvtU5sH4xaVtU10auWgbbD8:rSQzwtGJBAUZLvwzCc5sf/8

Score

N/A

Malware Config

Signatures

Files

9b920ab5f896634938ece9200f49c7359fc456dc615548f3b8e31ddf5aad0b34
.exe windows x86

bca4ac870e1c6bb14128df9dc9cd43c6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

waveOutUnprepareHeader

ws2_32

__WSAFDIsSet

rasapi32

RasDialA

kernel32

MultiByteToWideChar

user32

WaitForInputIdle

gdi32

GetViewportExtEx

winspool.drv

OpenPrinterA

advapi32

RegCloseKey

shell32

ShellExecuteA

ole32

CLSIDFromProgID

oleaut32

RegisterTypeLi

comctl32

ImageList_GetIcon

wininet

InternetCanonicalizeUrlA

comdlg32

ChooseFontA

msvcrt

strncpy

iphlpapi

GetInterfaceInfo

psapi

GetMappedFileNameW

Sections

.text
Size: 2.4MB - Virtual size: 2.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy