0eab376992e3f4a9a9ef2904c72f8e80c2ec358cdd34e40e7ddfdeabcca5cf1c | Triage

Submit
Reports

Overview

overview

1

Static

static

0eab376992...1c.dll

windows7-x64

1

0eab376992...1c.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

0eab376992e3f4a9a9ef2904c72f8e80c2ec358cdd34e40e7ddfdeabcca5cf1c.dll

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

0eab376992e3f4a9a9ef2904c72f8e80c2ec358cdd34e40e7ddfdeabcca5cf1c.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

0eab376992e3f4a9a9ef2904c72f8e80c2ec358cdd34e40e7ddfdeabcca5cf1c
Size

45KB
MD5

4567e11a2827e3b30f3028872d98e85a
SHA1

26e3cf47b6ce2e0beefc712205b034b0b309cbfa
SHA256

0eab376992e3f4a9a9ef2904c72f8e80c2ec358cdd34e40e7ddfdeabcca5cf1c
SHA512

4c672fc1f37bca1592babefc4ca6e6790256afc7444f6a8815f3fc039aafcd1719d0cf99e23a247c0c123c052fa84a836c089c69066736d734f81ac02486a67a
SSDEEP

768:c+sJ2eqgTlGuuwutQmQLT27pQuQynRn/i3ydVvJ9TMDZU0nZvaxV:c+ssexT0uuw87pTR/pdVM20nZs

Score

N/A

Malware Config

Signatures

Files

0eab376992e3f4a9a9ef2904c72f8e80c2ec358cdd34e40e7ddfdeabcca5cf1c
.dll windows x86

5397ef4f94d715384ae44a3a1fb54886

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

ExGetPreviousMode
ProbeForRead
SeDeleteObjectAuditAlarm
RtlCharToInteger
ExRaiseDatatypeMisalignment
ZwQuerySymbolicLinkObject
RtlHashUnicodeString
MmMapIoSpace
IoStartTimer
KeGetCurrentThread
IoQueueWorkItem
RtlAppendStringToString
RtlGetVersion
RtlUpcaseUnicodeToOemN
PsGetCurrentProcessId
IoRaiseHardError
RtlxUnicodeStringToAnsiSize
RtlFindLongestRunClear
KeSynchronizeExecution
FsRtlAllocateFileLock
IoInitializeTimer
ZwMakeTemporaryObject
SeTokenIsAdmin

Exports

Exports

?anuezrbeevenwczo@@YGH_N@Z
?yixvexzDFlf@@YGPAGE@Z
?tepyURsamCrLVhrcwEcmc@@YGPAHM@Z

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 170B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy