75b42ee4451f828405b39bf84fcc4a713cb2b7f853e993e9c13f3051102dda7d | Triage

Submit
Reports

Overview

overview

1

Static

static

75b42ee445...7d.exe

windows7-x64

75b42ee445...7d.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

75b42ee4451f828405b39bf84fcc4a713cb2b7f853e993e9c13f3051102dda7d.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

75b42ee4451f828405b39bf84fcc4a713cb2b7f853e993e9c13f3051102dda7d.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

75b42ee4451f828405b39bf84fcc4a713cb2b7f853e993e9c13f3051102dda7d
Size

7KB
MD5

45a62a7c5c58a26459a6661bd02178ce
SHA1

0db00ca3bcc64c055157a701bd4aaa2b117e130d
SHA256

75b42ee4451f828405b39bf84fcc4a713cb2b7f853e993e9c13f3051102dda7d
SHA512

d99ae52ba4824d05df8c8784d8f2beffc10afb030c18fef53ba7e66fcaf7099eb9ff78acf5f992376861e961ffbae99012ee5405314bd340a92efa01dc09496e
SSDEEP

96:jD14Ft0Wvv+j8QgUjGE0Xthu6/S+g3yFl/yucyAWAWKFDPmMn:/OFtBu8fUEd9/SWbK/yaFDPz

Score

N/A

Malware Config

Signatures

Files

75b42ee4451f828405b39bf84fcc4a713cb2b7f853e993e9c13f3051102dda7d
.exe windows x86

f44dc18852c527ac7c57c5cbab5a8f35

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

KeBugCheckEx
KeTickCount
swprintf
IoCreateDevice
IoCreateSymbolicLink
IofCompleteRequest
IoDeleteDevice
IoDeleteSymbolicLink
wcscat
RtlInitUnicodeString
_except_handler3
ExAllocatePoolWithTag
MmIsAddressValid
ExFreePool

ndis.sys

NdisFreePacket
NdisAllocatePacketPool
NdisAllocateBufferPool
NdisInitializeEvent
NdisFreeBufferPool
NdisFreePacketPool
NdisOpenAdapter
NdisCloseAdapter
NdisInitUnicodeString
NdisRegisterProtocol
NdisDeregisterProtocol
NdisSetEvent
NdisAllocatePacket
NdisAllocateBuffer
NdisWaitEvent
NdisResetEvent
NdisSend
NdisFreeBuffer
NdisUnchainBufferAtBack

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 384B - Virtual size: 340B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 128B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 1024B - Virtual size: 958B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 384B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy