4f1b67de033cb3d692e494a0104243edb1504185df21e5086dba1d10d941c12a | Triage

Submit
Reports

Overview

overview

Static

static

4f1b67de03...2a.dll

windows7_x64

4f1b67de03...2a.dll

windows10-2004_x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

4f1b67de033cb3d692e494a0104243edb1504185df21e5086dba1d10d941c12a.dll

Resource

win7-en-20211208

zloader main 20.04.2020 botnet persistence trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

4f1b67de033cb3d692e494a0104243edb1504185df21e5086dba1d10d941c12a.dll

Resource

win10v2004-en-20220113

windows10-2004_x64

0 signatures

0 seconds

General

Target

4f1b67de033cb3d692e494a0104243edb1504185df21e5086dba1d10d941c12a
Size

877KB
MD5

4773b4f06e91d998f15f56986eca1c04
SHA1

47bd5aa4356028de73fde18268e4891bf7ec5aae
SHA256

4f1b67de033cb3d692e494a0104243edb1504185df21e5086dba1d10d941c12a
SHA512

6709ee7c50729eab38b0ab6fc72948fa66458c277d9109e605824105827db87d9c34e7559c4a9a7c7e2f3908f8c4ac49be587e9210928c99757a600a3b9d3c77
SSDEEP

6144:jCGInLbdL0BjgwdJNhO1yd2l+nqCmv6iQtiS9Vzzz2axdqhNuy9xPpX:eaBku2GTmii8XGZNu2xBX

Score

N/A

Malware Config

Signatures

Files

4f1b67de033cb3d692e494a0104243edb1504185df21e5086dba1d10d941c12a
.dll windows x86

3996876777daa5d8460a4dd2c27866c7

Code Sign

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
VirtualAlloc
VirtualProtect
GetProcAddress
GetLastError
GetCurrentThread
GetCurrentProcess
lstrcmpA
lstrlenA
lstrcatA

comctl32

InitCommonControls

user32

CheckRadioButton
CheckDlgButton
GetGUIThreadInfo
GetCapture
CheckMenuRadioItem
CheckMenuItem
GetWindowDC
GetAsyncKeyState
GetCursorPos
GetWindowThreadProcessId
GetActiveWindow
GetCaretBlinkTime

oleacc

AccessibleObjectFromEvent

Sections

.text
Size: 289KB - Virtual size: 288KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ahbp
Size: 4KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.waxo
Size: 572KB - Virtual size: 572KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy