DllRegisterServer1
Static task
static1
Behavioral task
behavioral1
Sample
mon48_cr.dll
Resource
win7-20220414-en
General
-
Target
mon48_cr.dll
-
Size
329KB
-
MD5
48cab21fcbe254e7c83f4c1d455a39dc
-
SHA1
b96c1f765abb14eb401cacab6f6e203c3a255df9
-
SHA256
f1b9d5520ba13179e19b336e542d18b0bd9f39a2b41d88a739625c8480422b73
-
SHA512
0375a26a2d6d8990d202b75b4cb6797d03300ddc077c4dcb05778365212644ee49ce6e437fde0b77e1b8179d01ffad028635869d2f3897333b85471724d15ebc
-
SSDEEP
6144:aNwmpjb5sDo7TgHLC8X9cL4MoOm/ELg22LCs+7/WRE:aFHs5C8e4MPgELILCs8/EE
Malware Config
Signatures
Files
-
mon48_cr.dll.dll windows x86
89cc9d6792f17d6eec1bfb53516f1f37
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
vcruntime140
__std_type_info_destroy_list
memset
memcpy
kernel32
WriteConsoleW
SetFilePointerEx
Sleep
GetProcAddress
LoadLibraryA
GetLastError
HeapFree
GetModuleHandleW
HeapAlloc
GetProcessHeap
IsDebuggerPresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
SetLastError
GetCurrentThreadId
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetSystemTimeAsFileTime
FreeLibrary
LoadLibraryExW
LCMapStringW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
ExitProcess
GetModuleHandleExW
CreateFileW
GetStringTypeW
MultiByteToWideChar
WideCharToMultiByte
HeapSize
HeapReAlloc
RtlUnwind
GetStartupInfoW
QueryPerformanceCounter
GetCurrentProcessId
DisableThreadLibraryCalls
InitializeSListHead
CloseHandle
GetConsoleMode
GetModuleFileNameA
FindClose
FindFirstFileExA
FindNextFileA
GetCommandLineA
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetStdHandle
GetFileType
SetStdHandle
WriteFile
FlushFileBuffers
GetConsoleCP
user32
SetTimer
DispatchMessageA
GetMessageA
Exports
Exports
Sections
.text Size: 86KB - Virtual size: 85KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 17KB - Virtual size: 16KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 221KB - Virtual size: 223KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 16B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ