ba9f952a7a0d91faff7c1deedca0b15953fb829447f34c83f0f718fbd1ef6e4e | Triage

Submit
Reports

Overview

overview

1

Static

static

ba9f952a7a...4e.dll

windows7-x64

1

ba9f952a7a...4e.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

ba9f952a7a0d91faff7c1deedca0b15953fb829447f34c83f0f718fbd1ef6e4e.dll

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

ba9f952a7a0d91faff7c1deedca0b15953fb829447f34c83f0f718fbd1ef6e4e.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

ba9f952a7a0d91faff7c1deedca0b15953fb829447f34c83f0f718fbd1ef6e4e
Size

21KB
MD5

686d3f3e01836afa5c0e52d54ff38290
SHA1

3283b960dd8694a34b1ec49377974fba7d12e903
SHA256

ba9f952a7a0d91faff7c1deedca0b15953fb829447f34c83f0f718fbd1ef6e4e
SHA512

d553f0a7abdb00fc79966b193c3d8d1293ee35f137b0424e6a8caf1a1607c3f566a5cbf0184124bf699798a7493d27cced4af248db751854253c5887298b30a8
SSDEEP

384:lBqYAJzHB0qhLPCBnCGfABVGsfNxu+1wSVDrPn1AHEEjLaK:lBaZCBCSIf7pb1AHuK

Score

N/A

Malware Config

Signatures

Files

ba9f952a7a0d91faff7c1deedca0b15953fb829447f34c83f0f718fbd1ef6e4e
.dll windows x86

17e56da1b33bd9b243c8d8017e1fea48

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

CloseHandle
CreateProcessA
GetEnvironmentVariableA
GetThreadContext
ReadProcessMemory
ResumeThread
SetThreadContext
VirtualAllocEx
WriteProcessMemory
lstrcatA
lstrcpyA

Exports

Exports

DllMain
WLEventStartShell

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 94B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 412B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 52B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy