4527f3be3aafb440110f9757315eb07057d10abb8f1930bbdd5e9eb0803811f4 | Triage

Submit
Reports

Overview

overview

1

Static

static

4527f3be3a...f4.exe

windows7-x64

4527f3be3a...f4.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

4527f3be3aafb440110f9757315eb07057d10abb8f1930bbdd5e9eb0803811f4.exe

Resource

win7-20221111-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

4527f3be3aafb440110f9757315eb07057d10abb8f1930bbdd5e9eb0803811f4.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

4527f3be3aafb440110f9757315eb07057d10abb8f1930bbdd5e9eb0803811f4
Size

4KB
MD5

eac9aee03e005643790367cae22b935d
SHA1

57033bfe1d2901ff95684b462f59f0cc56bbe1f7
SHA256

4527f3be3aafb440110f9757315eb07057d10abb8f1930bbdd5e9eb0803811f4
SHA512

1e9bb031a45feda0e06fce3992adcdebfe68ce74d28b54a162b75e2445409b56c086d597a467c30c92308705a4bd1cd801d22a9ee8972ac18d070dad4f2d34b7
SSDEEP

96:d9HAXjZhho7tyIwtJxMB9KIFYwJyfmM5Mmdvzg+:2Lho7wzK9pFNJyfmTmNg+

Score

N/A

Malware Config

Signatures

Files

4527f3be3aafb440110f9757315eb07057d10abb8f1930bbdd5e9eb0803811f4
.exe windows x86

62a43691fc379d47a8298dce4740652e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

IoGetDeviceObjectPointer
ObDereferenceObject
ObReferenceObjectByName
RtlAnsiStringToUnicodeString
RtlInitAnsiString
ZwClose
ZwDeleteValueKey
ZwEnumerateValueKey
IoGetCurrentProcess
ZwQueryDirectoryFile
ZwQuerySystemInformation
ZwSetValueKey
ZwTerminateProcess
ZwYieldExecution
KeServiceDescriptorTable
IoDriverObjectType
IoCallDriver
ZwOpenKey
IoBuildDeviceIoControlRequest

ndis.sys

NdisRegisterProtocol
NdisDeregisterProtocol

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 224B - Virtual size: 204B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 160B - Virtual size: 148B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 672B - Virtual size: 648B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 320B - Virtual size: 312B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy