b02f3da06037e5b40b79753fa27329761415efc9edc4c3ccb60b13e2b493ed68 | Triage

Submit
Reports

Overview

overview

6

Static

static

b02f3da060...68.exe

windows7-x64

6

b02f3da060...68.exe

windows10-2004-x64

6

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

b02f3da06037e5b40b79753fa27329761415efc9edc4c3ccb60b13e2b493ed68.exe

Resource

win7-20221111-en

bootkit persistence

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

b02f3da06037e5b40b79753fa27329761415efc9edc4c3ccb60b13e2b493ed68.exe

Resource

win10v2004-20220812-en

bootkit persistence

windows10-2004-x64

3 signatures

150 seconds

General

Target

b02f3da06037e5b40b79753fa27329761415efc9edc4c3ccb60b13e2b493ed68
Size

184KB
MD5

e798ed2277714c33684c3ae0e6ca8dfe
SHA1

fcde69f305d2ae65b1a58d023f2cf0da9f58b7b6
SHA256

b02f3da06037e5b40b79753fa27329761415efc9edc4c3ccb60b13e2b493ed68
SHA512

5bc535a96f3d1fc603fa8621747f5526bd8ce267a6ce9bd50cb9827ab853eedd4c10a600f215de621e0ed31546c7adda84695a40936f9eab807f8f0f18c33a77
SSDEEP

3072:9NKoaNSLYP4M4YnKMiliwmcA7ME569tIapu7rBjPg:LKoySL2fnmliw076SapuBz

Score

N/A

Malware Config

Signatures

Files

b02f3da06037e5b40b79753fa27329761415efc9edc4c3ccb60b13e2b493ed68
.exe windows x86

76651fae63aae23c149fb3b56d34a409

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

StrRStrIW

msvcrt

exit

kernel32

HeapSize
ExitProcess
GetThreadTimes
SetHandleInformation
GlobalHandle
IsBadCodePtr
LoadLibraryExA
lstrlenW

user32

RegisterClassExA
AppendMenuA
LockWindowUpdate
SetWindowLongA
RegisterWindowMessageA
SendMessageTimeoutW
InflateRect
HideCaret
GetWindowLongA
ModifyMenuW
wsprintfA
SetWindowTextA
CharToOemBuffA

gdi32

DeleteDC
EndPage
ExtTextOutA
SelectClipRgn
CreateBitmapIndirect
CreateEllipticRgnIndirect

Exports

Exports

?_RZ_CE_chreuAF_Qp_nox@@YGPAKM@Z
?_HUD_ZJHD_VQ___Dh_pl@@YG_NPAF@Z
?ztorwiV_SUbatsuoXL@@YGHF@Z
?QXAM_V_LIWT_k_FXA@@YGPAEJF@Z

Sections

.text
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dbg
Size: 2KB - Virtual size: 161KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.qdata
Size: 112KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy