88a605bd4565abafbb535e56a62809b86e9f8976199afc8997f05b273d11b3cf | Triage

Submit
Reports

Overview

overview

1

Static

static

88a605bd45...cf.dll

windows7-x64

1

88a605bd45...cf.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

88a605bd4565abafbb535e56a62809b86e9f8976199afc8997f05b273d11b3cf.dll

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

88a605bd4565abafbb535e56a62809b86e9f8976199afc8997f05b273d11b3cf.dll

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

88a605bd4565abafbb535e56a62809b86e9f8976199afc8997f05b273d11b3cf
Size

24KB
MD5

47a27e51c99c4d38e5b05aed1c93ac45
SHA1

2b00b404d4f92fe795c73447f573f0dbc4d9bb97
SHA256

88a605bd4565abafbb535e56a62809b86e9f8976199afc8997f05b273d11b3cf
SHA512

c527fce16b5cd99c53dce5322060c1b1ea1357117bc53677912352a0bf81c5723b1fdab08bc3f16fcab5273c76fd6a83d04c3d10e4f153c67d218a6f565f5014
SSDEEP

192:40+S9V2uCB93AIqSKNFhn/bfIt//WoIKlJaOx1TaF:40+42l3AIqSKPhn/8/oKlJaOxEF

Score

N/A

Malware Config

Signatures

Files

88a605bd4565abafbb535e56a62809b86e9f8976199afc8997f05b273d11b3cf
.dll windows x86

d2b51a2bb85017fb8f493069d53dbd6d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteFileA
TerminateProcess
OutputDebugStringA
FindClose
FindNextFileA
FindFirstFileA
Sleep
DisableThreadLibraryCalls
CreateProcessA
GetLastError

user32

EnumChildWindows
SendMessageA
GetParent
CloseDesktop
GetClassNameA
EnumDesktopWindows
PostMessageA
CreateDesktopA
OpenDesktopA
SetForegroundWindow
GetWindowThreadProcessId

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey

shell32

SHGetSpecialFolderPathA

ws2_32

WSAStartup
connect
socket
htons
send
recv
closesocket
shutdown
inet_addr
WSACleanup
gethostbyname
setsockopt

msvcrt

_adjust_fdiv
_initterm
time
srand
atoi
strchr
rand
_strcmpi
realloc
sprintf
malloc
strstr
free

Exports

Exports

GetDLlVersion
Run
Sunbelt

Sections

.text
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 672B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 780B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy