866dbe0ca54895904dea3022800bce1c8fdbf8f374d3a2970e9b7df46a3e1a39 | Triage

Submit
Reports

Overview

overview

1

Static

static

866dbe0ca5...39.dll

windows7-x64

1

866dbe0ca5...39.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

866dbe0ca54895904dea3022800bce1c8fdbf8f374d3a2970e9b7df46a3e1a39.dll

Resource

win7-20220901-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

866dbe0ca54895904dea3022800bce1c8fdbf8f374d3a2970e9b7df46a3e1a39.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

866dbe0ca54895904dea3022800bce1c8fdbf8f374d3a2970e9b7df46a3e1a39
Size

61KB
MD5

059dbcef2aa14680fcf4ab7cdc644f90
SHA1

4adc5ea966334bb8d0f1c225198fdeea52e0a74a
SHA256

866dbe0ca54895904dea3022800bce1c8fdbf8f374d3a2970e9b7df46a3e1a39
SHA512

1c998e8cf8ac6ebe11348f0d9fac42efe887cbb88b04f03342916676b5dd8279061356023670f30ae6f4e0dd544476ef8d9509a7dcecc8c19d9e2844ee20a03d
SSDEEP

1536:m8HW9htpepZF6RogMCf2eABX/FwzYVmcsdR:mBL6Z8RPzOHh/FYYVmcsdR

Score

N/A

Malware Config

Signatures

Files

866dbe0ca54895904dea3022800bce1c8fdbf8f374d3a2970e9b7df46a3e1a39
.dll windows x86

5f1b14388401e52cea9346a69f17e7c1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

FsRtlIsTotalDeviceFailure
RtlDeleteRegistryValue
ZwQueryObject
RtlCompareString
RtlInitString
IoAllocateController
IoDeleteDevice
RtlInitUnicodeString
RtlEqualUnicodeString
IoQueueWorkItem
ExDeletePagedLookasideList
KeSaveFloatingPointState
ZwCreateFile
RtlAnsiStringToUnicodeString
RtlCharToInteger
ExRegisterCallback
ZwOpenProcess
RtlOemStringToUnicodeString
IoReportDetectedDevice
MmLockPagableSectionByHandle
ExRaiseAccessViolation
ExRaiseDatatypeMisalignment
IoGetRelatedDeviceObject
RtlEqualString
ZwFlushKey
IoOpenDeviceRegistryKey
IoCheckQuotaBufferValidity
RtlIntegerToUnicodeString
RtlFindLongestRunClear

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 1024B - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 620B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy