Static task
static1
Behavioral task
behavioral1
Sample
PI_KPCPU_231(MECH)NBI.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
PI_KPCPU_231(MECH)NBI.exe
Resource
win10v2004-20221111-en
General
-
Target
PI_KPCPU_231(MECH)NBI.exe
-
Size
6KB
-
MD5
7da0c9a1d8a1baac8a00a22f186dbfe6
-
SHA1
022858f70e018712f7a0c9e8865f7589ad4d6ac5
-
SHA256
ab8d17d5338d8841bb9ddae3440d1de95d5e34a7569b94c04a1c226c4cf2e872
-
SHA512
1d7e91dc2d015c7bfdc5f3384ed02435f9c8d93779b3f7b44eb62dbaa87b9315415cb4b101b736fce2cdfb568302a4843d0a7de6fe5df3f5972dd1b6227680d3
-
SSDEEP
96:IyWK6Z0XppJ0FLIThhSzLlePB2zRXfHygsQlfnhmkFCx12zNt:Iz20FKhhSzLcJ2zBSyTFQQ
Malware Config
Signatures
Files
-
PI_KPCPU_231(MECH)NBI.exe.exe windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ