456c74328ff1a3a8c78797a3a55c03adc2b04bd7a2c5ef5d2d9f1aa4909ae08d | Triage

Submit
Reports

Overview

overview

6

Static

static

456c74328f...8d.dll

windows7-x64

6

456c74328f...8d.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

456c74328ff1a3a8c78797a3a55c03adc2b04bd7a2c5ef5d2d9f1aa4909ae08d.dll

Resource

win7-20220901-en

bootkit discovery persistence

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

456c74328ff1a3a8c78797a3a55c03adc2b04bd7a2c5ef5d2d9f1aa4909ae08d.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

456c74328ff1a3a8c78797a3a55c03adc2b04bd7a2c5ef5d2d9f1aa4909ae08d
Size

120KB
MD5

65da93866aac59e05a65af5a8a40a5cc
SHA1

d0597b96c960c43ebfdc4a30cd1602f783ebfb03
SHA256

456c74328ff1a3a8c78797a3a55c03adc2b04bd7a2c5ef5d2d9f1aa4909ae08d
SHA512

6e8a221ea2159b932364005867b57596ec67485a10c9fd7b79a36f83bf5338a57e9d275c5f4d6a04cbabcaf9a165e503717617c7debcc80af3b362bef57de2ff
SSDEEP

1536:uG2vuhsqVjtfLmQR73Sl4GeaOUffs8QsgsTAVAaykTofwsQO0LSD:uGjhsMAyw4Hsf08QG0zyiofwsQ5m

Score

N/A

Malware Config

Signatures

Files

456c74328ff1a3a8c78797a3a55c03adc2b04bd7a2c5ef5d2d9f1aa4909ae08d
.dll windows x86

76617e1a081d29216f976c00e1630357

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA
wsprintfA
CharNextA
LoadStringA
CharPrevA
MessageBoxExA

advapi32

GetSidLengthRequired
FreeSid
GetSecurityDescriptorDacl
RegEnumValueA
SetFileSecurityA
SetSecurityDescriptorDacl
GetSidSubAuthority
InitializeAcl
AddAccessAllowedAce
InitializeSecurityDescriptor
SetSecurityDescriptorOwner
SetSecurityDescriptorGroup
RegOpenKeyExA
RegCloseKey
InitializeSid
RegQueryValueExA
AllocateAndInitializeSid

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA

shell32

SHGetMalloc
SHGetSpecialFolderLocation
SHGetPathFromIDListA

Sections

.text
Size: 88KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 526B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy