b640a071d7be20f4095049fd4f1be59ab3003b377793821198dd63cfed915bbf | Triage

Submit
Reports

Overview

overview

Static

static

b640a071d7...bf.exe

windows7-x64

b640a071d7...bf.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

b640a071d7be20f4095049fd4f1be59ab3003b377793821198dd63cfed915bbf.exe

Resource

win7-20220812-en

gh0strat bootkit persistence rat

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

b640a071d7be20f4095049fd4f1be59ab3003b377793821198dd63cfed915bbf.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

b640a071d7be20f4095049fd4f1be59ab3003b377793821198dd63cfed915bbf
Size

260KB
MD5

7fe6be4aaf21b913c7fcdf5ce0ce963a
SHA1

fad4617f88f49ab4fcea5c645528745819944550
SHA256

b640a071d7be20f4095049fd4f1be59ab3003b377793821198dd63cfed915bbf
SHA512

9709d5ec8e11661b0c96ea41aa6bd2f6aa3d9ae8edab82c310c14f7c2b5938f371a416a7e426e08f751f4b0f713c80d0df8143c7ce70176f656b497ca233b3f9
SSDEEP

6144:CgeMlDsYMTquaGxoXnuUEF9GCpiQ7uLTfo:CgeMlm2QuX/itzuw

Score

N/A

Malware Config

Signatures

Files

b640a071d7be20f4095049fd4f1be59ab3003b377793821198dd63cfed915bbf
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

pOOdx3YT
Size: - Virtual size: 220KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Uk8haksb
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

laENX0FF
Size: 236KB - Virtual size: 236KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

trCNOfHU
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

7wFOe6pi
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy