4ce7c4a18b3e504a7064bf97f40d4efed800c166e2579ebef0d64b4122ffbe76 | Triage

Submit
Reports

Overview

overview

1

Static

static

4ce7c4a18b...76.dll

windows7-x64

1

4ce7c4a18b...76.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

4ce7c4a18b3e504a7064bf97f40d4efed800c166e2579ebef0d64b4122ffbe76.dll

Resource

win7-20220901-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

4ce7c4a18b3e504a7064bf97f40d4efed800c166e2579ebef0d64b4122ffbe76.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

4ce7c4a18b3e504a7064bf97f40d4efed800c166e2579ebef0d64b4122ffbe76
Size

159KB
MD5

1def231f9151b606c39ea44fbf57c5d3
SHA1

eda4c1380260366c8aea7d8834caf48cb7ee0ebe
SHA256

4ce7c4a18b3e504a7064bf97f40d4efed800c166e2579ebef0d64b4122ffbe76
SHA512

cadafb0623bd016c2cc0e31c14b4e3a26e0e1d81ccbac8d657c62828e4e49ce24dcffa2030f754c6c4b8b18dea3b44727bdf0d0d83c4588f488a0423db3e45fc
SSDEEP

3072:6jE70k8RPzF4837Hg9Y0Dv0DzxOpyveIn0C2cJaJFs0r9gkJKqDm+TAnBRjvt:6Q70ZxTfzwA0C2ckJ4f+iBRjv

Score

N/A

Malware Config

Signatures

Files

4ce7c4a18b3e504a7064bf97f40d4efed800c166e2579ebef0d64b4122ffbe76
.dll windows x86

0c39f53d86229786f09a730fb4093f52

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

MmSizeOfMdl
ZwCreateDirectoryObject
RtlCompareString
KeInitializeEvent
MmAllocateContiguousMemory
RtlInitializeGenericTable
RtlEqualString
RtlUpcaseUnicodeChar
RtlEqualUnicodeString
RtlFindLongestRunClear
MmUnlockPagableImageSection
RtlInitUnicodeString
KeRemoveByKeyDeviceQueue
RtlInitString
RtlIntegerToUnicodeString
KeSetTargetProcessorDpc
PsGetCurrentThreadId
RtlCharToInteger
CcFastCopyRead
RtlInitializeBitMap
IoCreateSynchronizationEvent
IoFreeWorkItem
RtlEnumerateGenericTable
IoSetDeviceInterfaceState
FsRtlLookupLastLargeMcbEntry
PsCreateSystemThread
ExReinitializeResourceLite
RtlQueryRegistryValues
IoCheckEaBufferValidity

Sections

.text
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 1024B - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 828B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy