b85e4f77fd1aef89e77152bc9c414695ae57f574848636b42e02bf24c425fd63 | Triage

Submit
Reports

Overview

overview

7

Static

static

b85e4f77fd...63.exe

windows7-x64

7

b85e4f77fd...63.exe

windows10-2004-x64

7

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

b85e4f77fd1aef89e77152bc9c414695ae57f574848636b42e02bf24c425fd63.exe

Resource

win7-20221111-en

bootkit persistence

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

b85e4f77fd1aef89e77152bc9c414695ae57f574848636b42e02bf24c425fd63.exe

Resource

win10v2004-20221111-en

bootkit persistence

windows10-2004-x64

4 signatures

150 seconds

General

Target

b85e4f77fd1aef89e77152bc9c414695ae57f574848636b42e02bf24c425fd63
Size

254KB
MD5

c261ff4633ee4c59a4c5662e500caf95
SHA1

7ddbd3ec2037ca868177461da4fcc4ea6681f17d
SHA256

b85e4f77fd1aef89e77152bc9c414695ae57f574848636b42e02bf24c425fd63
SHA512

63a952a9bddbcf9929fb1bb4d2b1cba31abb3e00c9ecf7acb13f81e92ce31eb6076a11236de29f31fb3c414aa0ef285204428111fef06dc03cd453b4bf142588
SSDEEP

6144:re5lGjK/hsU8jNbCUy8pi8x04DRoctwv/hXIhBaRfkQ6w:K5lGjFjJCUnX0ijtch4wM9w

Score

N/A

Malware Config

Signatures

Files

b85e4f77fd1aef89e77152bc9c414695ae57f574848636b42e02bf24c425fd63
.exe windows x86

ae8c2e7945cc53c8d0427bbf712c34b7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualFree
VirtualProtect
LoadLibraryA
GetProcAddress
VirtualAlloc

Sections

.text
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 232B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ATTACH
Size: 182KB - Virtual size: 400KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy