c2ad17d480e9a13cf31a07a8584435fe742466a5994dba9c8acd36b35c447b37 | Triage

Submit
Reports

Overview

overview

1

Static

static

c2ad17d480...37.exe

windows7-x64

c2ad17d480...37.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

c2ad17d480e9a13cf31a07a8584435fe742466a5994dba9c8acd36b35c447b37.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

c2ad17d480e9a13cf31a07a8584435fe742466a5994dba9c8acd36b35c447b37.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

c2ad17d480e9a13cf31a07a8584435fe742466a5994dba9c8acd36b35c447b37
Size

3KB
MD5

593736e7808942b3c8b33029890863a6
SHA1

7d0d215ced3bf28e157a5b538e27045d59f537da
SHA256

c2ad17d480e9a13cf31a07a8584435fe742466a5994dba9c8acd36b35c447b37
SHA512

37157abc37255cc5c904c89e821bab83caa3d726f9096a40613bf20986be24dda43f264ac9158da23c499468b46e6f59423506f590e5e926b8c0ccdf5c74eae5

Score

N/A

Malware Config

Signatures

Files

c2ad17d480e9a13cf31a07a8584435fe742466a5994dba9c8acd36b35c447b37
.exe windows x86

2be5d4c7d34f01780ed31a60890baee6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

ExFreePoolWithTag
ExAllocatePoolWithTag
DbgPrint
IoDeleteDevice
IoDeleteSymbolicLink
IofCompleteRequest
PsTerminateSystemThread
ObReferenceObjectByHandle
PsCreateSystemThread
ObfDereferenceObject
PsLookupProcessByProcessId
IoCreateSymbolicLink
IoCreateDevice
RtlInitUnicodeString
KeWaitForSingleObject
MmGetSystemRoutineAddress

hal

KfRaiseIrql
KeGetCurrentIrql

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 256B - Virtual size: 163B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 128B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 640B - Virtual size: 566B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 256B - Virtual size: 156B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.jsge
Size: 128B - Virtual size: 128B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy