ce437bc6a6db71aaf4e28da0fb72016f1769b786d2555c5d3696d9daed9a603b | Triage

Submit
Reports

Overview

overview

7

Static

static

ce437bc6a6...3b.exe

windows7-x64

7

ce437bc6a6...3b.exe

windows10-2004-x64

7

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

ce437bc6a6db71aaf4e28da0fb72016f1769b786d2555c5d3696d9daed9a603b.exe

Resource

win7-20220812-en

bootkit evasion persistence trojan

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

ce437bc6a6db71aaf4e28da0fb72016f1769b786d2555c5d3696d9daed9a603b.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

ce437bc6a6db71aaf4e28da0fb72016f1769b786d2555c5d3696d9daed9a603b
Size

1.4MB
MD5

25f148881e3c67e69f28b1a7a9ef6781
SHA1

6c48909235b0a893e5811901adc73d3bb86076c5
SHA256

ce437bc6a6db71aaf4e28da0fb72016f1769b786d2555c5d3696d9daed9a603b
SHA512

c6570304169a129d7478f309ca50d6d6fe524a04ca364894c14abd2b267b146cfb9ea3f2f484f453a9d772da1c95e00c40155b6d1056fa11534400352becc5ca
SSDEEP

24576:vRTTgQlFEsWq2MiYy8OA1YY1pHVCc5Ymh9X7FSdqV55Lp7rbzQSVrHbCbw4meqVU:1TlEsWnTc31xlnh9XkqpL5PVdvV/dy

Score

N/A

Malware Config

Signatures

Files

ce437bc6a6db71aaf4e28da0fb72016f1769b786d2555c5d3696d9daed9a603b
.exe windows x86

655f65ea91f1ec9556f48f5837cae81e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

UnhandledExceptionFilter

Sections

Size: 432KB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 52KB - Virtual size: 189KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 952KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

mozfajlw
Size: 928KB - Virtual size: 928KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

cbqpokrs
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy