99a21f5950db19ca25d42fbd677bc6364afc0125c2e09600a3669c660d2aa25d | Triage

Submit
Reports

Overview

overview

8

Static

static

99a21f5950...5d.exe

windows7-x64

99a21f5950...5d.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

99a21f5950db19ca25d42fbd677bc6364afc0125c2e09600a3669c660d2aa25d.exe

Resource

win7-20220812-en

bootkit persistence

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

99a21f5950db19ca25d42fbd677bc6364afc0125c2e09600a3669c660d2aa25d.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

99a21f5950db19ca25d42fbd677bc6364afc0125c2e09600a3669c660d2aa25d
Size

298KB
MD5

8f6eb0cb044cf1508166503a23ba9283
SHA1

7d1a3a586fc85018c445554ed09e205a5fd42c23
SHA256

99a21f5950db19ca25d42fbd677bc6364afc0125c2e09600a3669c660d2aa25d
SHA512

e5840df3d7459ed5c07b7e9ecee7dcb1270258a246a0e653743b2f504ab7a19e2f7ac48fa1bfd783892dda24a44bb3ec7678b8770059eb0b273415da75e6286e
SSDEEP

6144:cQQlt6tunRncQtd1u5eexkxvQWYkkBGG5zS9sJzn0:c9CMRcQ71RYkk0G5zSUn0

Score

N/A

Malware Config

Signatures

Files

99a21f5950db19ca25d42fbd677bc6364afc0125c2e09600a3669c660d2aa25d
.exe windows x86

c5e94b2c1a4d00cd52cc1c8eeb14eae7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WaitForSingleObject
FindFirstFileA
SetCriticalSectionSpinCount
TryEnterCriticalSection
VirtualAllocEx
InitializeCriticalSection

advapi32

CredWriteDomainCredentialsW

opengl32

glGetIntegerv

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 812B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 340B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 282KB - Virtual size: 282KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy