a89dea75f15756523c3a9ed931cf725f50380a684987fc6066c21941444400b2 | Triage

Submit
Reports

Overview

overview

Static

static

a89dea75f1...b2.exe

windows7-x64

a89dea75f1...b2.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

a89dea75f15756523c3a9ed931cf725f50380a684987fc6066c21941444400b2.exe

Resource

win7-20221111-en

gh0strat bootkit persistence rat

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

a89dea75f15756523c3a9ed931cf725f50380a684987fc6066c21941444400b2.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

a89dea75f15756523c3a9ed931cf725f50380a684987fc6066c21941444400b2
Size

354KB
MD5

e0f72173eadc7fa5858c1140d0bce9ff
SHA1

a06af736ed2c67f900c99ded0ceeb086c5fd8207
SHA256

a89dea75f15756523c3a9ed931cf725f50380a684987fc6066c21941444400b2
SHA512

d5d9ddf369bce7c854f2036bc74430affe3f2b7eca4e193e5d6528695cffdb5bb510798de373af667d604b2376c0fbffbce3197d61de8c78e5fd21f347c2e377
SSDEEP

6144:68egewpkT3Ye77M+e6WKvf8QLBBzAM+GuN8QpKP70:6fgewQYe7I+FlLbzL+jkI

Score

N/A

Malware Config

Signatures

Files

a89dea75f15756523c3a9ed931cf725f50380a684987fc6066c21941444400b2
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Fyj9Bswq
Size: - Virtual size: 220KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

YbmHLwF1
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

KzogIADr
Size: 236KB - Virtual size: 236KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

mIheBmWT
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

6ay7U0ZN
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy