e3cd886b97c5b79c7684d9050161bfbdf5a4ce1144ef9bca04cd197c96866631 | Triage

Submit
Reports

Overview

overview

Static

static

e3cd886b97...31.exe

windows7-x64

e3cd886b97...31.exe

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

e3cd886b97c5b79c7684d9050161bfbdf5a4ce1144ef9bca04cd197c96866631.exe

Resource

win7-20221111-en

gh0strat bootkit persistence rat

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

e3cd886b97c5b79c7684d9050161bfbdf5a4ce1144ef9bca04cd197c96866631.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

e3cd886b97c5b79c7684d9050161bfbdf5a4ce1144ef9bca04cd197c96866631
Size

305KB
MD5

e709f05f89ed4affcf52f0f373246069
SHA1

614bff3c6e49878c969dda6c96415d6915f2ab1e
SHA256

e3cd886b97c5b79c7684d9050161bfbdf5a4ce1144ef9bca04cd197c96866631
SHA512

5cf29e312efc186ace783e4ef14685f0e9573b0af7d9728638ff41dd9f667a0a79e460b455fc6d109e44fa5b8aa48a284d2ee3323481052e648c2cdbc117932c
SSDEEP

6144:68egewpkT3Ye77M+e6WKvf8QLBBzAM+GuN8QpKP7r:6fgewQYe7I+FlLbzL+jkX

Score

N/A

Malware Config

Signatures

Files

e3cd886b97c5b79c7684d9050161bfbdf5a4ce1144ef9bca04cd197c96866631
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Fyj9Bswq
Size: - Virtual size: 220KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

YbmHLwF1
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

KzogIADr
Size: 236KB - Virtual size: 236KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

mIheBmWT
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

6ay7U0ZN
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy