1a6a5c5111d72fdb3d1454311ebb8af8d852b6246a1ed0253fd81d131a6f6355 | Triage

Submit
Reports

Overview

overview

1

Static

static

1a6a5c5111...55.dll

windows7_x64

1

1a6a5c5111...55.dll

windows10-2004_x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

1a6a5c5111d72fdb3d1454311ebb8af8d852b6246a1ed0253fd81d131a6f6355.dll

Resource

win7-20220414-en

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

1a6a5c5111d72fdb3d1454311ebb8af8d852b6246a1ed0253fd81d131a6f6355.dll

Resource

win10v2004-20220414-en

windows10-2004_x64

0 signatures

0 seconds

General

Target

1a6a5c5111d72fdb3d1454311ebb8af8d852b6246a1ed0253fd81d131a6f6355
Size

14KB
MD5

0b44fadd1dab5fc637d48c1cd54f54c7
SHA1

5c1f3925a28a87495fbcf02469be89fec6e24331
SHA256

1a6a5c5111d72fdb3d1454311ebb8af8d852b6246a1ed0253fd81d131a6f6355
SHA512

2dcd1b76025c59020a62897ca21f6425ed189148cf5fd9462e2bcd1973a5722b0c40e63c6bea21f286cdeffae7ad4fc9605c96b1e76d5b9babe0b85213e3dec1
SSDEEP

192:9pGgOh/FJHQfouTEte/sHyLT07I09tlFSxaGnUgy7S2DkS+VEQN:9AgOh/wfPEM/g7t9tlUTUgeIS+V

Score

N/A

Malware Config

Signatures

Files

1a6a5c5111d72fdb3d1454311ebb8af8d852b6246a1ed0253fd81d131a6f6355
.dll windows x86

10d6d5c2f521472013ced6b5377801c3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wsock32

accept
htonl
bind
listen
ntohs
__WSAFDIsSet
socket
WSAGetLastError
htons
connect
send
select
recv
setsockopt
shutdown
closesocket
WSAStartup
gethostname
gethostbyname
inet_addr
ioctlsocket

wininet

InternetOpenA
InternetOpenUrlA
InternetCloseHandle
InternetReadFile

kernel32

WinExec
GetLastError
CreateMutexA
GetTickCount
Sleep
WaitForSingleObject
ReleaseMutex
GetSystemDirectoryA

user32

TranslateMessage
DispatchMessageA
GetMessageA

msvcrt

strstr
memcpy
malloc
fread
free
sscanf
vsprintf
strcat
strcmp
_exit
atoi
fwrite
fopen
fgets
fclose
strlen
strncmp
time
fseek
ftell
_initterm
_adjust_fdiv
printf
_unlink
sprintf
memset
strcpy
rand
_beginthread
srand

Exports

Exports

load

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 716B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy