Static task
static1
Behavioral task
behavioral1
Sample
7cd77b460f3f433c3256658a37368bb363e5c5b6a02e048e0646163f04560d97.dll
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
7cd77b460f3f433c3256658a37368bb363e5c5b6a02e048e0646163f04560d97.dll
Resource
win10v2004-20220414-en
General
-
Target
7cd77b460f3f433c3256658a37368bb363e5c5b6a02e048e0646163f04560d97
-
Size
173KB
-
MD5
2dda307ec1f222b8a00821c96537d860
-
SHA1
4b1a9e9fbebfcf464ffb638c67f14787a18bae97
-
SHA256
7cd77b460f3f433c3256658a37368bb363e5c5b6a02e048e0646163f04560d97
-
SHA512
0495e219d70bfbc47bacd53ef28fbb385c2230018820116ff45f8d70fb8a29ff9eda80137dfb1999879a19f249c1bf77e1da68e695438c18fddaec7ead0470b7
-
SSDEEP
3072:ZNrTDqVThmYQ5xOxoyaxiC867Z7jxdmcddlM+ywHp51RHnR7Dw55tTpkvJ+R5D2q:DO9wYxsks7Br7RdE3tTpkvJ+l
Malware Config
Extracted
jupyter
http://146.70.101.97
Signatures
-
Jupyter family
Files
-
7cd77b460f3f433c3256658a37368bb363e5c5b6a02e048e0646163f04560d97.dll windows x86
4b8dc8b124f6a7b247112a2f7ebd73bd
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorDllMain
mfc42u
ord4142
Sections
.text Size: 169KB - Virtual size: 169KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 656B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.tsuarc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
y6Ie<9 Size: 512B - Virtual size: 128B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.l1 Size: 512B - Virtual size: 512B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.l1 Size: 512B - Virtual size: 512B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE