44d6164a079b09a67d15fcc66a61be29dd77471003c2179e9ffc9c62d0853969 | Triage

Submit
Reports

Overview

overview

1

Static

static

44d6164a07...69.dll

windows7-x64

1

44d6164a07...69.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

44d6164a079b09a67d15fcc66a61be29dd77471003c2179e9ffc9c62d0853969.dll

Resource

win7-20220812-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

44d6164a079b09a67d15fcc66a61be29dd77471003c2179e9ffc9c62d0853969.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

44d6164a079b09a67d15fcc66a61be29dd77471003c2179e9ffc9c62d0853969
Size

11KB
MD5

38bb80861ba5a84700260a219ae09e80
SHA1

1f1fa4a5125707b3e2af0309f70de3f90a174435
SHA256

44d6164a079b09a67d15fcc66a61be29dd77471003c2179e9ffc9c62d0853969
SHA512

05d58f78fca1869024715a54936af1384306cfb610e27acd45d08c67df2ae62a2250a2e46d67821a09eed6c9ea3bbc01a121c907a78ee96b2188c86465331a71
SSDEEP

192:XXOzjbjkgi51BIJAouOuyGip/K3Q/HEXWgPzLuzw3JICv:XXuYgixuNfuyGiiWgPzme

Score

N/A

Malware Config

Signatures

Files

44d6164a079b09a67d15fcc66a61be29dd77471003c2179e9ffc9c62d0853969
.dll windows x86

f3b6136398bc05551b515bc1c655e959

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
CreateMutexA
GetCurrentProcessId
GetModuleFileNameA
GetCurrentProcess
CreateThread
WideCharToMultiByte
IsBadReadPtr
GetPrivateProfileStringA
Sleep
ReadProcessMemory
WriteProcessMemory
GlobalFree
GlobalLock
GlobalAlloc
GetProcAddress
GetModuleHandleA
GetCurrentThread
CloseHandle
Process32Next
Process32First
CreateToolhelp32Snapshot

user32

CallNextHookEx
GetWindowThreadProcessId
FindWindowA
SetWindowsHookExA

wininet

InternetCloseHandle
InternetOpenUrlA
InternetOpenA
InternetReadFile

msvcrt

_adjust_fdiv
_stricmp
malloc
_initterm
free
fread
memset
strlen
fclose
fopen
??3@YAXPAX@Z
strrchr
memcpy
strcpy
sprintf
??2@YAPAXI@Z

Exports

Exports

fx

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 948B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

sdt
Size: 512B - Virtual size: 269B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 906B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy