23dc7c4163dcb5abdc2ba9da508dc945[.]bin | Triage

Submit
Reports

Overview

overview

9

Static

static

1

eb154cb6d8...90.dll

windows7-x64

9

eb154cb6d8...90.dll

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

eb154cb6d8aea30e49d0726ca5fea3303d8283580218cb768a82fb7d4bdba890.dll

Resource

win7-20230220-en

bootkit evasion persistence trojan

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

eb154cb6d8aea30e49d0726ca5fea3303d8283580218cb768a82fb7d4bdba890.dll

Resource

win10v2004-20230220-en

bootkit evasion persistence

windows10-2004-x64

8 signatures

150 seconds

General

Target

23dc7c4163dcb5abdc2ba9da508dc945.bin
Size

1.2MB
MD5

8ec7cdc42d7bc2025037d7f13da4fc47
SHA1

f2bb8de5f9e083908d8ec2c085672e80fdbac241
SHA256

abd187af1c1a32ed9307d1655f725d663d9676ec221b3a41bbdfa033991bf020
SHA512

e0a21159f904b2c4772aac13fcb58adedecac916d0bc933c6b65ad0f240e9b9b349814d41ad91137fcbcdf5aec39081c617fbd17d8dc08967831d22ee4829fde
SSDEEP

24576:oLZ+f2DNCkWhGtcHgyFEKZ1rVNtE2iQ4+gCYV7MULfEXb/n7+fIW:oLE2DEFEW1BNtEF+DYfEX+fIW

Score

1^/10

Malware Config

Signatures

Files

23dc7c4163dcb5abdc2ba9da508dc945.bin
.zip

Password: infected
eb154cb6d8aea30e49d0726ca5fea3303d8283580218cb768a82fb7d4bdba890.dll
.dll windows x86

Password: infected

06d90141d3fdab7f9e0de825e6c197f0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetFileSize

Sections

Size: 40KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

riiiizjm
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

kijeazhu
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy