fb629058a82560a72f80daa62cdce6502da4ef91ef67319c9ef88dd453aeee7c | Triage

Submit
Reports

Overview

overview

1

Static

static

fb629058a8...7c.dll

windows7-x64

1

fb629058a8...7c.dll

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

fb629058a82560a72f80daa62cdce6502da4ef91ef67319c9ef88dd453aeee7c.dll

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

fb629058a82560a72f80daa62cdce6502da4ef91ef67319c9ef88dd453aeee7c.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

fb629058a82560a72f80daa62cdce6502da4ef91ef67319c9ef88dd453aeee7c
Size

225KB
MD5

6b017a88c2f286d4ab7f61ce5c938cc3
SHA1

3db199e5c71c4c34be24e642015c102c22339e69
SHA256

fb629058a82560a72f80daa62cdce6502da4ef91ef67319c9ef88dd453aeee7c
SHA512

0c7af6864921c3421555f8990688d42fddc94418260e34a3f00b8d86bbdb07429910671d004f4f290f4bd36f969b92d6d2e7908b6269d63159861cb1f37c3d2c
SSDEEP

6144:oFdJJCvFab4SqZ1ZU7/to67N6CfTBuYfqH7S:unbb4Sq67t7MCfTbqH7S

Score

N/A

Malware Config

Signatures

Files

fb629058a82560a72f80daa62cdce6502da4ef91ef67319c9ef88dd453aeee7c
.dll windows x86

6aeaa21aa43699708603748c37db7273

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

IoAllocateMdl
RtlFindUnicodePrefix
KeRegisterBugCheckCallback
FsRtlLookupLastLargeMcbEntry
RtlUnicodeStringToInteger
RtlHashUnicodeString
ExNotifyCallback
FsRtlCheckLockForWriteAccess
RtlCompareString
RtlCopyString
MmMapLockedPagesSpecifyCache
FsRtlIsTotalDeviceFailure
IoGetBootDiskInformation
RtlInitString
RtlEqualUnicodeString
RtlEqualString
CcFastCopyWrite
IoCreateStreamFileObjectLite
RtlInitUnicodeString

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.code
Size: 512B - Virtual size: 320B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.icode
Size: 512B - Virtual size: 320B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fdata
Size: 1024B - Virtual size: 717B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 648B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy