c2c9a5643419dd18b6284b71d479ea7bb5e0fd1e1d3a933b2e852bd52f047c9a | Triage

Submit
Reports

Overview

overview

1

Static

static

c2c9a56434...9a.dll

windows7-x64

1

c2c9a56434...9a.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

c2c9a5643419dd18b6284b71d479ea7bb5e0fd1e1d3a933b2e852bd52f047c9a.dll

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

c2c9a5643419dd18b6284b71d479ea7bb5e0fd1e1d3a933b2e852bd52f047c9a.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

c2c9a5643419dd18b6284b71d479ea7bb5e0fd1e1d3a933b2e852bd52f047c9a
Size

172KB
MD5

6fae84f3b2a062aa54328b9bce5ef1be
SHA1

21777430337e66eb0827f2d95c3771693c45b04a
SHA256

c2c9a5643419dd18b6284b71d479ea7bb5e0fd1e1d3a933b2e852bd52f047c9a
SHA512

ace711cd38c292d1820d0e3e0c435ecc603e096fac2e08d9c012005271fcd2af15617dc66624d523cb69e2c2e87fd038093e4f0ade5b15de5093bbf669183291
SSDEEP

3072:06n2mVqTb+ty2sp2/KstekWpWpxxs5vzU1BCkQ0Wiwy:mmTtyHp+3okxxUL0BCk7vV

Score

N/A

Malware Config

Signatures

Files

c2c9a5643419dd18b6284b71d479ea7bb5e0fd1e1d3a933b2e852bd52f047c9a
.dll windows x86

75000a74214dd76ce7523ed33d00f6df

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InterlockedIncrement
Sleep
InterlockedDecrement
OutputDebugStringA
lstrcpyA
WriteFile
SetFilePointer
LoadLibraryA
GetProcAddress
DisableThreadLibraryCalls
FreeLibrary

advapi32

RegQueryValueExA
RegCloseKey
RegOpenKeyExA

msvcrt

_purecall
??3@YAXPAX@Z
??2@YAPAXI@Z
__CxxFrameHandler
_ftol
ceil

user32

wvsprintfA
wsprintfA

wiaservc

wiasReadPropLong
wiasGetRootItem
wiasSendEndOfPage
wiasGetImageInformation
wiasWriteBufToFile

Exports

Exports

DliHook
DllCanUnloadNow
DllGetClassObject
_DllEntryPoint@12

Sections

.text
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 116KB - Virtual size: 116KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy