ea6c5e0cb2ca3c63b22bf707e9a6adc5d1bdad92f57cc32d55939bc3534119d8 | Triage

Submit
Reports

Overview

overview

3

Static

static

ea6c5e0cb2...d8.dll

windows7-x64

3

ea6c5e0cb2...d8.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

ea6c5e0cb2ca3c63b22bf707e9a6adc5d1bdad92f57cc32d55939bc3534119d8.dll

Resource

win7-20220812-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

ea6c5e0cb2ca3c63b22bf707e9a6adc5d1bdad92f57cc32d55939bc3534119d8.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

ea6c5e0cb2ca3c63b22bf707e9a6adc5d1bdad92f57cc32d55939bc3534119d8
Size

596KB
MD5

677333611c35b9995fa46ff8c995cd70
SHA1

151e7914e36e20358d7ca4f53486a764fa1c8fd4
SHA256

ea6c5e0cb2ca3c63b22bf707e9a6adc5d1bdad92f57cc32d55939bc3534119d8
SHA512

11c303e4d8728a904d4ec794dfb0cb7c4e8700c9039a5a81dce3811b8fcb51a6cd5a70884dd748362ee2eba29b22cf2cf34b156855593eb396a2d63532d7f773
SSDEEP

12288:Jv2svL6M8kuwxj1Ek8ft5AcF4PYCgf3q4B088CLTqkpuJxlG5k+mFJIa9GwZtuVW:tFvxRDKyGS32RB+iNwgfIiy

Score

N/A

Malware Config

Signatures

Files

ea6c5e0cb2ca3c63b22bf707e9a6adc5d1bdad92f57cc32d55939bc3534119d8
.dll windows x86

ae62ac4d1db79be8ef7e6a765d621843

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
GetDateFormatA
GetEnvironmentStringsW
GetLastError
GetModuleFileNameA
GetModuleHandleA
GetOEMCP
GetTickCount
GetVersion
GetACP
HeapAlloc
HeapCreate
HeapFree
HeapReAlloc
MultiByteToWideChar
RtlUnwind
VirtualAlloc
VirtualFree
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetVersionExA
ExitProcess

ole32

CoInitialize
CoCreateInstance
CoUninitialize

user32

DdeUnaccessData
DdeFreeDataHandle
EnableWindow

oleaut32

SysFreeString

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCloseKey

Exports

Exports

GetGlobals
NewMember
get_pCAL
set_swap_alpha
write_image

Sections

.text
Size: 176KB - Virtual size: 175KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 176KB - Virtual size: 176KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 164KB - Virtual size: 162KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy