4d33cd5ab3315a939db73687712ef3f6c4db2c9b1545f2e4c87a0a4f4e3457b1 | Triage

Submit
Reports

Overview

overview

6

Static

static

4d33cd5ab3...b1.dll

windows7-x64

6

4d33cd5ab3...b1.dll

windows10-2004-x64

6

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

4d33cd5ab3315a939db73687712ef3f6c4db2c9b1545f2e4c87a0a4f4e3457b1.dll

Resource

win7-20220812-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

4d33cd5ab3315a939db73687712ef3f6c4db2c9b1545f2e4c87a0a4f4e3457b1.dll

Resource

win10v2004-20220901-en

windows10-2004-x64

4 signatures

150 seconds

General

Target

4d33cd5ab3315a939db73687712ef3f6c4db2c9b1545f2e4c87a0a4f4e3457b1
Size

75KB
MD5

655024034bf0ca6a06c7dc6cb4ef10cc
SHA1

67e18229676591b0d1b525fe3958fbc36e6bd886
SHA256

4d33cd5ab3315a939db73687712ef3f6c4db2c9b1545f2e4c87a0a4f4e3457b1
SHA512

95df85797bec46e5f95d476090955b74a86feb39e4ea1587c1da859852737d009bec00ad1ac8df96d0cb4c63be6e16b9d65e0c699951b1ce1de7f4066a485b17
SSDEEP

1536:OJFxnbSzGrB/C//CSzg5u7xiPW9YvUFczxrawiEvlXQvnlmErc1dL:OJ3bSSrJC3zh7xiPWbAnk4XZ

Score

N/A

Malware Config

Signatures

Files

4d33cd5ab3315a939db73687712ef3f6c4db2c9b1545f2e4c87a0a4f4e3457b1
.dll windows x86

d1691ca767315b814a2483cf2ddfb47f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

??2@YAPAXI@Z
??3@YAXPAX@Z
_vsnwprintf
memset

kernel32

GetTempPathW
CloseHandle
WriteFile
SizeofResource
CreateFileW
LockResource
LoadResource
FindResourceW
FreeLibrary
DeleteFileW
GetTempFileNameW
LoadLibraryW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
RtlUnwind
GetLastError
GetWindowsDirectoryW
VerSetConditionMask
VerifyVersionInfoW
GetProcAddress

advapi32

TraceMessage
RegCloseKey
RegSetValueExW
RegCreateKeyExW
QueryServiceConfigW
OpenServiceW
OpenSCManagerW
RegQueryValueExW
RegOpenKeyW
CloseServiceHandle

setupapi

InstallHinfSectionW

Exports

Exports

ExecuteProcessGroupPolicyEx
ExecuteProcessGroupPolicyExWithError
ProcessGroupPolicyEx

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 65KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 966B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy