lpnlyib[.]exe | Triage

Submit
Reports

Overview

overview

7

Static

static

lpnlyib.exe

windows7-x64

7

lpnlyib.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

lpnlyib.exe

Resource

win7-20221111-en

bootkit persistence

windows7-x64

4 signatures

600 seconds

Behavioral task

behavioral2

Sample

lpnlyib.exe

Resource

win10v2004-20220812-en

bootkit persistence

windows10-2004-x64

4 signatures

600 seconds

General

Target

lpnlyib.exe
Size

3.9MB
MD5

87381952ba35a8bb41eac7a910e014c4
SHA1

5a6f61a9626858f0ccc4474f5f92532133a3ec26
SHA256

7f3a9029e385da75a2eadb9679f5f4790dc46b65c7840e344c83443a2d4e9699
SHA512

4705fca2174a0682fbd544e81881afbc3d27e3d0e1d2b8eb46dc5f99b3996db86c55fbd6aefac51e3f24975c4b22139bc994e70226294bc483dcb91bea90ce38
SSDEEP

98304:mnosTv1V+vmq/Gk/eal+07At6DRDaJpuQbNy:m7TtVq0RhuxWuQbU

Score

N/A

Malware Config

Signatures

Files

lpnlyib.exe
.exe windows x64

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

lstrcpy

Sections

Size: 412KB - Virtual size: 884KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 5.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

orjdyfmp
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

naahkzeo
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 27KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy