tempnam
Static task
static1
Behavioral task
behavioral1
Sample
07be5d876aa45fd4d6f68a7c3ffa9e0a67f4d3d5f557309e5621334ffea74b84.dll
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
07be5d876aa45fd4d6f68a7c3ffa9e0a67f4d3d5f557309e5621334ffea74b84.dll
Resource
win10v2004-en-20220112
General
-
Target
07be5d876aa45fd4d6f68a7c3ffa9e0a67f4d3d5f557309e5621334ffea74b84
-
Size
327KB
-
MD5
aa22a99a52c046473ec73a0665bd4f4c
-
SHA1
87d1fc8cd625b868c37ed8775069a11175ed4253
-
SHA256
07be5d876aa45fd4d6f68a7c3ffa9e0a67f4d3d5f557309e5621334ffea74b84
-
SHA512
072a53c5cd91d3952f8cad296e909d6bac3ff237175354aebab65347e79c707e429dbd5df2dce1f5b36d038abc56f67b07b4c560407b60ae147f6abd9c101f66
-
SSDEEP
6144:L+0C6kUvdu1HY+voubOv+xf9dRHmQ7+MaTfXOIehV:S0C6Lk4NYnnvaTfXHeh
Malware Config
Signatures
Files
-
07be5d876aa45fd4d6f68a7c3ffa9e0a67f4d3d5f557309e5621334ffea74b84.dll windows x64
61035926491cdc4f2c911997ae33a19b
Code Sign
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Imports
user32
LoadStringW
shlwapi
SHQueryValueExA
ole32
CoUninitialize
CoInitialize
kernel32
GetCurrentThread
RtlLookupFunctionEntry
RtlVirtualUnwind
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
GetACP
CreateEventA
CreateMutexA
GetModuleHandleA
VirtualAllocEx
GetProcessHeap
GetVersionExA
RtlCaptureContext
GetCommandLineW
GetEnvironmentStrings
GetEnvironmentStringsW
GetCurrentProcessId
GetOEMCP
TerminateProcess
Exports
Exports
Sections
.text Size: 22KB - Virtual size: 22KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 300KB - Virtual size: 300KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 512B - Virtual size: 468B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.tls Size: 512B - Virtual size: 33B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.CRT Size: 512B - Virtual size: 16B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 720B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 72B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ