DllGetClassObject
DllRegisterServer
PluginInit
RunObject
Behavioral task
behavioral1
Sample
04b64949289d84f323a2bd3d1c951eaa13177aae1cddfc917bd0817d49f4aee6.dll
Resource
win7-20220715-en
Behavioral task
behavioral2
Sample
04b64949289d84f323a2bd3d1c951eaa13177aae1cddfc917bd0817d49f4aee6.dll
Resource
win10v2004-20220414-en
Target
04b64949289d84f323a2bd3d1c951eaa13177aae1cddfc917bd0817d49f4aee6.dll
Size
13KB
MD5
a61078c78a4858b3d4c3946e15bae6a3
SHA1
a181c612438591bb20fe08d3cbe589b15923ed89
SHA256
04b64949289d84f323a2bd3d1c951eaa13177aae1cddfc917bd0817d49f4aee6
SHA512
1398bcc28fe58402c036a67a87cc02a7362e8aa26467218134497459ef34bf6545f340ed78b49f26dd19112cf7c25491c5effc565a5152a3177d86f440d9c87a
SSDEEP
192:sHVMfa7TTCjJSixzPSAA56RCK7Yu/VPgwuPXBAQYfPq/3Kb:s1Mf0gJSix2AA56RCiZV6GQYnq/6b
icedid
4182822218
explorblins.com
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
WinHttpCloseHandle
WinHttpOpen
WinHttpSendRequest
WinHttpConnect
WinHttpQueryHeaders
WinHttpReceiveResponse
WinHttpSetStatusCallback
WinHttpOpenRequest
WinHttpSetOption
WinHttpQueryDataAvailable
WinHttpReadData
wsprintfW
memset
SwitchToThread
CreateFileA
GetLastError
WideCharToMultiByte
lstrlenW
VirtualProtect
VirtualAlloc
lstrcatA
lstrcpyA
GetTempPathA
CreateDirectoryA
LoadLibraryA
GetProcAddress
GetComputerNameExW
Sleep
ExitProcess
CreateThread
HeapAlloc
HeapFree
GetProcessHeap
HeapReAlloc
WriteFile
CloseHandle
GetTickCount64
GetUserNameW
LookupAccountNameW
SHGetFolderPathA
DllGetClassObject
DllRegisterServer
PluginInit
RunObject
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE