3a397a1bf3efbcc3439ad119860764d0d2aedbe0337f6bea29e31fc6066e7a6c | Triage

Submit
Reports

Overview

overview

1

Static

static

3a397a1bf3...6c.dll

windows7-x64

1

3a397a1bf3...6c.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

3a397a1bf3efbcc3439ad119860764d0d2aedbe0337f6bea29e31fc6066e7a6c.dll

Resource

win7-20220901-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

3a397a1bf3efbcc3439ad119860764d0d2aedbe0337f6bea29e31fc6066e7a6c.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

3a397a1bf3efbcc3439ad119860764d0d2aedbe0337f6bea29e31fc6066e7a6c
Size

72KB
MD5

2e20bbcacaa8c180ba5acbb9b11588dd
SHA1

d51d4fcd9a666daef891cbaa097a9a90bb655d7b
SHA256

3a397a1bf3efbcc3439ad119860764d0d2aedbe0337f6bea29e31fc6066e7a6c
SHA512

e77581e6be92cf66407d410b1292a9eb0e21c7e5fb70b4255b523583ed92a31548714a0d7bcdd5bda0bbca04d35f4f35d461736e3508e5aafd501118bfe0fd6d
SSDEEP

1536:X4J2mNQ4fifToTQXnnXbdfUNcgYA6gxP5MWqgISKSfPmi:X4J24HTQXrdW0WPgSFm

Score

N/A

Malware Config

Signatures

Files

3a397a1bf3efbcc3439ad119860764d0d2aedbe0337f6bea29e31fc6066e7a6c
.dll windows x86

0b281369314d3ae928a28cd4c9703587

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

RtlVolumeDeviceToDosName
RtlFreeAnsiString
IoCompleteRequest
NtSetEaFile
KdEnteredDebugger
NtClose
CcMdlRead
RtlQueryTimeZoneInformation

hal

HalReportResourceUsage
KdComPortInUse
HalFreeCommonBuffer
HalTranslateBusAddress
WRITE_PORT_BUFFER_USHORT

Sections

.data
Size: - Virtual size: 88KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 410B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy