b61fd72def68f83292c0c3003b391af4ac3bd130294d86bfdd8a5aacd6add816 | Triage

Submit
Reports

Overview

overview

1

Static

static

b61fd72def...16.exe

windows7-x64

b61fd72def...16.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

b61fd72def68f83292c0c3003b391af4ac3bd130294d86bfdd8a5aacd6add816.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

b61fd72def68f83292c0c3003b391af4ac3bd130294d86bfdd8a5aacd6add816.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

b61fd72def68f83292c0c3003b391af4ac3bd130294d86bfdd8a5aacd6add816
Size

35KB
MD5

f8c851dd94205de279861408c8f32551
SHA1

91a39f3a737051707c54f1fa41ac00adf42f1863
SHA256

b61fd72def68f83292c0c3003b391af4ac3bd130294d86bfdd8a5aacd6add816
SHA512

91b6bc788e4b2f54e10236a17ec8ed438f00b3151670c39b5d0aab759e0f6965ce0f38136242505bd49855232da580d0374758f983a75922d2a81314163cb9c4
SSDEEP

768:v7E8wBo2tVY56W76D31a+XIuaOwZLaqldGR2pD9Zq9/Tr8MGgqi:OozwW76TNYoiaqldGR2ppZUQi

Score

N/A

Malware Config

Signatures

Files

b61fd72def68f83292c0c3003b391af4ac3bd130294d86bfdd8a5aacd6add816
.exe windows x86

80eae941fcfd2d35995017da03ab5fec

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

KeGetCurrentThread
ExAllocatePoolWithTag
KeInitializeDpc
IoSetFileOrigin
ExFreePoolWithTag
memset
RtlHashUnicodeString
RtlInitUnicodeString
RtlGetVersion
KeTickCount
KeBugCheckEx
ZwDeleteKey
KeGetRecommendedSharedDataAlignment

hal

KeGetCurrentIrql

Sections

.text
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 256B - Virtual size: 185B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 256B - Virtual size: 249B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 512B - Virtual size: 504B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy