cc5192f67678575198b36099f57d78efd02008ac7d45b56f56e2b830d13beaa7 | Triage

Submit
Reports

Overview

overview

1

Static

static

cc5192f676...a7.exe

windows7-x64

cc5192f676...a7.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

cc5192f67678575198b36099f57d78efd02008ac7d45b56f56e2b830d13beaa7.exe

Resource

win7-20221111-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

cc5192f67678575198b36099f57d78efd02008ac7d45b56f56e2b830d13beaa7.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

cc5192f67678575198b36099f57d78efd02008ac7d45b56f56e2b830d13beaa7
Size

21KB
MD5

79bd1d26ca9626fc0fef4760062fcc1f
SHA1

16952840ee95b3759c357a7ec0f0d688b217f9be
SHA256

cc5192f67678575198b36099f57d78efd02008ac7d45b56f56e2b830d13beaa7
SHA512

818845dd12227b55f33489a9c9341d966cb15be9570ac74854649632325719c2b636568b994401c41b9049f590c35252cc48921626ea984d2f4598ae4a7a3d56
SSDEEP

384:WRO9IVeFx/p/HUCtFqNeTux3INcIgfD5wP/xCKVa7QDgiI14eENXNybY:WROOValTFqNeTMY+bNwnB47Q1y4ZX8bY

Score

N/A

Malware Config

Signatures

Files

cc5192f67678575198b36099f57d78efd02008ac7d45b56f56e2b830d13beaa7
.exe windows x86

40554e8ea7c6ef530b5379c3a183e825

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

RtlIsValidOemCharacter
RtlImageNtHeader
KdPollBreakIn
CcMdlReadComplete
PsReturnPoolQuota
ExWindowStationObjectType
NlsMbCodePageTag
ExFreePool
SePrivilegeCheck
ZwCreateTimer
CcMdlWriteComplete
ZwDeleteKey
ZwCreateSymbolicLinkObject
ObSetSecurityDescriptorInfo
IoCallDriver
RtlFreeUnicodeString
KeStackAttachProcess
ZwDeleteFile
memcpy
ExCreateCallback
KeInitializeInterrupt
RtlDeleteNoSplay
_wcsupr
ExAllocatePool

hal

KeAcquireQueuedSpinLockRaiseToSynch
KeQueryPerformanceCounter
HalCalibratePerformanceCounter
WRITE_PORT_BUFFER_ULONG
HalFlushCommonBuffer
HalReturnToFirmware
ExTryToAcquireFastMutex
KfReleaseSpinLock
IoReadPartitionTable
KeLowerIrql
HalReportResourceUsage
KeFlushWriteBuffer
HalProcessorIdle
KeTryToAcquireQueuedSpinLockRaiseToSynch

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy