d7a49a5f84b138d0b1eae4fa4a36035e57d4b45daa464d622e68940089c30d98 | Triage

Submit
Reports

Overview

overview

1

Static

static

d7a49a5f84...98.exe

windows7-x64

d7a49a5f84...98.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

d7a49a5f84b138d0b1eae4fa4a36035e57d4b45daa464d622e68940089c30d98.exe

Resource

win7-20221111-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

d7a49a5f84b138d0b1eae4fa4a36035e57d4b45daa464d622e68940089c30d98.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

d7a49a5f84b138d0b1eae4fa4a36035e57d4b45daa464d622e68940089c30d98
Size

96KB
MD5

4f6b62c1d18bcb0db167f05e123748d9
SHA1

9af9e8ac6239f7c23d81b9228aff9bc663e52bbe
SHA256

d7a49a5f84b138d0b1eae4fa4a36035e57d4b45daa464d622e68940089c30d98
SHA512

f8566fa6e967e7a7005d2f172e7c1a60866dc3a58eb9a1a351949fa8f6017447e033790ec144371de6c13f878f1bcdca7b331806dd41e1ff955cffe98758b93f
SSDEEP

1536:oglUEEr17Jb3JYtWlqExq+i3LqRmpyKtS2gm3/NtmjLpCgO5wZaQ8:blrEZ7J5lqSqiRmp7rNKLQvwZaQ8

Score

N/A

Malware Config

Signatures

Files

d7a49a5f84b138d0b1eae4fa4a36035e57d4b45daa464d622e68940089c30d98
.exe windows x86

f739a291e8352008cb3832ea6665c47c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

KeSetEvent
IoFreeIrp
IoAllocateWorkItem
IoFreeWorkItem
IoDeleteDevice
IoAllocateMdl
IoAttachDevice
ObfDereferenceObject
memcpy
ExAllocatePoolWithTag
IoGetRelatedDeviceObject
DbgPrint
KeInitializeMutex
KeInitializeDpc
IoFreeMdl

hal

ExAcquireFastMutex
ExReleaseFastMutex

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 65KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 512B - Virtual size: 468B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 442B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy