df55e75cef29a525abf041e475ac7a3a766a22d0f788b477dc3a49b317d9ebe2 | Triage

Submit
Reports

Overview

overview

1

Static

static

df55e75cef...e2.dll

windows7-x64

1

df55e75cef...e2.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

df55e75cef29a525abf041e475ac7a3a766a22d0f788b477dc3a49b317d9ebe2.dll

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

df55e75cef29a525abf041e475ac7a3a766a22d0f788b477dc3a49b317d9ebe2.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

df55e75cef29a525abf041e475ac7a3a766a22d0f788b477dc3a49b317d9ebe2
Size

159KB
MD5

6836da1ca2e90dd7270723bbe30aebba
SHA1

07524d52d3123c88b234180b0d830cb388aa0fea
SHA256

df55e75cef29a525abf041e475ac7a3a766a22d0f788b477dc3a49b317d9ebe2
SHA512

1cf26cc8bb9404c77cc7767516693fc9f6e39c9ed770e469b5e4c25a632b3eb09f21f0776c56bba8a0c8baf426b737681cf625c13bf4d68ddda8027a0f33a996
SSDEEP

3072:IOfV8RPzc2CEAY0Dv0DzxOpyveIn0C2cJaJFs0r9gkJKqDm+TAnBRjvt:IOfuxEEdzwA0C2ckJ4f+iBRjv

Score

N/A

Malware Config

Signatures

Files

df55e75cef29a525abf041e475ac7a3a766a22d0f788b477dc3a49b317d9ebe2
.dll windows x86

aee90ef25a16758669a71148270000c0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

CcDeferWrite
RtlInitUnicodeString
MmPageEntireDriver
RtlCompareString
KeRestoreFloatingPointState
PoCallDriver
RtlIntegerToUnicodeString
ExDeleteResourceLite
RtlUpperString
IoCheckEaBufferValidity
RtlNumberOfClearBits
IoConnectInterrupt
IoFreeController
FsRtlFreeFileLock
RtlEqualString
RtlMultiByteToUnicodeN
FsRtlCheckOplock
FsRtlGetNextFileLock
KeDelayExecutionThread
RtlEqualUnicodeString
RtlInitString
IoRaiseHardError
MmSecureVirtualMemory
RtlDeleteNoSplay
MmFreeContiguousMemory
RtlCharToInteger
FsRtlIsDbcsInExpression
IoReleaseCancelSpinLock
ObReferenceObjectByPointer

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 1024B - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 916B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy