cf8e08f423e217a015c86b5f9dd8c159aa2ad33b46ed1a512b489457b40b6063 | Triage

Submit
Reports

Overview

overview

1

Static

static

cf8e08f423...63.dll

windows7-x64

1

cf8e08f423...63.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

cf8e08f423e217a015c86b5f9dd8c159aa2ad33b46ed1a512b489457b40b6063.dll

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

cf8e08f423e217a015c86b5f9dd8c159aa2ad33b46ed1a512b489457b40b6063.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

cf8e08f423e217a015c86b5f9dd8c159aa2ad33b46ed1a512b489457b40b6063
Size

331KB
MD5

651eb5fbdc80edb9694c80943db78363
SHA1

303676b450f6c1e41018dca5ba7e40182e9f7e7b
SHA256

cf8e08f423e217a015c86b5f9dd8c159aa2ad33b46ed1a512b489457b40b6063
SHA512

9c630390c9a316f6f85d3d3c9ce47d138c193865f63748da5e6b7e858d64b7c71abeeae62f6388a95e8b664529b46726980c7c710f94375ced650223af733a11
SSDEEP

6144:xU0KDX8yCq26PNt87Cqi/zznv4sGA8sxWae6u2Bya/rtU61I+AK3uK6HxjnLJtQt:T0Cq26VtBqWLus4ae6lyap1I+Ayu7Hx2

Score

N/A

Malware Config

Signatures

Files

cf8e08f423e217a015c86b5f9dd8c159aa2ad33b46ed1a512b489457b40b6063
.dll windows x86

f1995b9753ca177359b3b7a13716d62b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

KeRemoveDeviceQueue
RtlEqualUnicodeString
ExFreePoolWithTag
MmIsAddressValid
RtlEqualString
IoReportDetectedDevice
FsRtlDeregisterUncProvider
RtlIntegerToUnicodeString
ZwEnumerateValueKey
MmFreeNonCachedMemory
MmLockPagableSectionByHandle
strcat
IoAllocateMdl
RtlCompareString
RtlInitString
RtlInitUnicodeString
RtlCreateSecurityDescriptor
ExLocalTimeToSystemTime
RtlUpcaseUnicodeChar
RtlAreBitsClear
RtlUpperChar
FsRtlFreeFileLock

Sections

.text
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 1024B - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 876B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy