f8f08e24f6b34589c5d3afdbb681a5f7692ece2dd5d25a6314c38b7da7f1a00e | Triage

Submit
Reports

Overview

overview

1

Static

static

f8f08e24f6...0e.dll

windows7-x64

1

f8f08e24f6...0e.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

f8f08e24f6b34589c5d3afdbb681a5f7692ece2dd5d25a6314c38b7da7f1a00e.dll

Resource

win7-20220901-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

f8f08e24f6b34589c5d3afdbb681a5f7692ece2dd5d25a6314c38b7da7f1a00e.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

3 signatures

150 seconds

General

Target

f8f08e24f6b34589c5d3afdbb681a5f7692ece2dd5d25a6314c38b7da7f1a00e
Size

32KB
MD5

6f189e343d18ce57db1c7bbe36c984ba
SHA1

46b4d33aab14822b704a54f73293c21f5d5369bf
SHA256

f8f08e24f6b34589c5d3afdbb681a5f7692ece2dd5d25a6314c38b7da7f1a00e
SHA512

71f9b7f9ceb7e1300a3c895cdb97121d17aae4c910a419ecd16f00de3de8dd0545e48ebd44d2f0f85c7ef9f867e312eece3b79358f25f6138c9e5e3859683d0b
SSDEEP

384:qJKU6SVC1LXlVx27c6gQbG1mliIqLWrqUXbGt:vSMbYAhwl3aWrqUXKt

Score

N/A

Malware Config

Signatures

Files

f8f08e24f6b34589c5d3afdbb681a5f7692ece2dd5d25a6314c38b7da7f1a00e
.dll regsvr32 windows x86

9eeb6cb1fd47611eb1e275c8c2586514

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteFileA
InterlockedIncrement
CloseHandle
CreateThread
GetWindowsDirectoryA
GetLocalTime
GetSystemDirectoryA
GetModuleFileNameA
WinExec
GetProcAddress
LoadLibraryA

user32

SetWindowsHookExA
UnhookWindowsHookEx
SetTimer
KillTimer
CallNextHookEx
GetMessageA
TranslateMessage
DispatchMessageA
RegisterClassExA
CreateWindowExA
ShowWindow
FindWindowExA
PostMessageA
DefWindowProcA

advapi32

RegQueryValueExA
RegOpenKeyExA
RegSetValueExA
RegCreateKeyExA
RegCloseKey

shell32

SHGetSpecialFolderPathA

msvcrt

_initterm
free
strstr
strrchr
_access
strchr
fopen
fwrite
_strlwr
malloc
_adjust_fdiv
_stricmp
fclose
__CxxFrameHandler
sprintf
??3@YAXPAX@Z
??2@YAPAXI@Z

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 778B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy