91950ee84ec9ca75fb7554919f273140ebb2544a764225e3ef1ca296dd15f63c | Triage

Submit
Reports

Overview

overview

1

Static

static

91950ee84e...3c.dll

windows7-x64

1

91950ee84e...3c.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

91950ee84ec9ca75fb7554919f273140ebb2544a764225e3ef1ca296dd15f63c.dll

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

91950ee84ec9ca75fb7554919f273140ebb2544a764225e3ef1ca296dd15f63c.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

91950ee84ec9ca75fb7554919f273140ebb2544a764225e3ef1ca296dd15f63c
Size

317KB
MD5

57e62ddd686aaf6830d4e46ea505f767
SHA1

aae37d9fe800aaabdf1cbef95021e18bbb89f59c
SHA256

91950ee84ec9ca75fb7554919f273140ebb2544a764225e3ef1ca296dd15f63c
SHA512

dbc449b40acb100c2fd5ae300e78d15e9afe1224f5b40a4e1ede59ee6073e9d1c7de5449db08579f22b9bdbffd73c17ebe45114bb7b44abfd37941edc69f2f0e
SSDEEP

6144:ltpj9yjYzJVcBy4K1tb9kwlDP6URjF/atESTBFYC2cvT6aFxZf:ltpjMjMVOybLDPFRauSTTYZKZf

Score

N/A

Malware Config

Signatures

Files

91950ee84ec9ca75fb7554919f273140ebb2544a764225e3ef1ca296dd15f63c
.dll windows x86

4c975f758f3f353909ec4fa6b8c542f5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

FsRtlNotifyUninitializeSync
RtlCharToInteger
RtlTimeToTimeFields
RtlIntegerToUnicodeString
RtlUpperChar
ZwEnumerateValueKey
RtlxAnsiStringToUnicodeSize
IoCreateStreamFileObjectLite
RtlInitUnicodeString
RtlCopyUnicodeString
RtlMapGenericMask
IoSetSystemPartition
RtlCompareString
RtlxUnicodeStringToAnsiSize
IoConnectInterrupt
RtlFindLeastSignificantBit
ObReferenceObjectByHandle
IoCreateSynchronizationEvent
RtlInitString
ZwClose
SeSinglePrivilegeCheck
KeResetEvent
SeDeassignSecurity
ZwOpenSymbolicLinkObject
RtlEqualUnicodeString
RtlUpperString
ExIsProcessorFeaturePresent
MmPageEntireDriver
RtlEqualString

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 1024B - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 720B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy