345e43c7cf28c247f51fbd922fd70b370ed4a81960b2ec58d48137d091c8cbc9 | Triage

Submit
Reports

Overview

overview

1

Static

static

345e43c7cf...c9.dll

windows7-x64

1

345e43c7cf...c9.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

345e43c7cf28c247f51fbd922fd70b370ed4a81960b2ec58d48137d091c8cbc9.dll

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

345e43c7cf28c247f51fbd922fd70b370ed4a81960b2ec58d48137d091c8cbc9.dll

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

345e43c7cf28c247f51fbd922fd70b370ed4a81960b2ec58d48137d091c8cbc9
Size

183KB
MD5

666061216e7ea3afb72d43fb3516a23b
SHA1

10a3bf06fcf1b9fe68ed58404026d2378cb44987
SHA256

345e43c7cf28c247f51fbd922fd70b370ed4a81960b2ec58d48137d091c8cbc9
SHA512

33a5578495e22f33858c2945bcdd4107d3623869e2486789db747d1e98ad7fb2329fbd1fbcd0c0415a9a84ec1f00259a59de8a79698985b5db393e766b273c17
SSDEEP

3072:AdxRiEwMxGn39UT5hKT7uVW0egfexWlyK4yOTFO+HLJJedbVTQiJTfZl:AdWEwMxqNUT5qy4gACyZTFOELDqTJr

Score

N/A

Malware Config

Signatures

Files

345e43c7cf28c247f51fbd922fd70b370ed4a81960b2ec58d48137d091c8cbc9
.dll windows x86

4dd933ed23d66b8e5c6bbac6e66c051c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

strcat
KeInsertDeviceQueue
RtlCompareString
SeDeleteObjectAuditAlarm
IoInitializeTimer
RtlCheckRegistryKey
FsRtlIsNameInExpression
IoRegisterDeviceInterface
IoCheckEaBufferValidity
RtlInitString
RtlAreBitsClear
RtlInitUnicodeString
RtlEqualString
ExAcquireResourceSharedLite
ObReferenceObjectByHandle
KeQueryTimeIncrement
RtlIntegerToUnicodeString
RtlInitializeSid
ObQueryNameString
MmLockPagableSectionByHandle
KeInsertHeadQueue
KeRemoveQueueDpc
RtlUpperChar
IoFreeMdl
KeReadStateTimer
RtlEqualUnicodeString
KeReadStateSemaphore
KeInitializeDpc
ZwCreateSection

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 1024B - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 704B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy