28f0341d22819cfbbda9fc4969b67ebcadb0ef00776abee0a432c0fe311ae546 | Triage

Submit
Reports

Overview

overview

1

Static

static

28f0341d22...46.dll

windows7-x64

1

28f0341d22...46.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

28f0341d22819cfbbda9fc4969b67ebcadb0ef00776abee0a432c0fe311ae546.dll

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

28f0341d22819cfbbda9fc4969b67ebcadb0ef00776abee0a432c0fe311ae546.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

28f0341d22819cfbbda9fc4969b67ebcadb0ef00776abee0a432c0fe311ae546
Size

20KB
MD5

90ee26712820256202e5742365ab75fc
SHA1

82f181b81f73b576ec32663c5b9044b0d87e664b
SHA256

28f0341d22819cfbbda9fc4969b67ebcadb0ef00776abee0a432c0fe311ae546
SHA512

bcca09587508fcdb92c373d9ec6612272a34644e23123e9b3b72c8883e053f7c0b2e46fbacde67f55dda4d1fd8c6de929c0c4ac46d9acd6a8df88974bd63fb6b
SSDEEP

192:almS9xWaWvd+YlSSDQ2sqImrcjjiWS1MhNP1TR:almcWNd+YlSSDBsqITjeWS1MhNP

Score

N/A

Malware Config

Signatures

Files

28f0341d22819cfbbda9fc4969b67ebcadb0ef00776abee0a432c0fe311ae546
.dll windows x86

07c095844c9a2f82f2e0746d6c3e8196

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TerminateProcess
OutputDebugStringA
Sleep
DisableThreadLibraryCalls
CreateProcessA
GetLastError

user32

EnumChildWindows
SendMessageA
GetParent
CloseDesktop
GetClassNameA
EnumDesktopWindows
PostMessageA
CreateDesktopA
OpenDesktopA
SetForegroundWindow
GetWindowThreadProcessId

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey

shell32

SHGetSpecialFolderPathA

ws2_32

WSAStartup
connect
socket
htons
send
recv
closesocket
shutdown
inet_addr
WSACleanup
gethostbyname
setsockopt

msvcrt

_adjust_fdiv
_initterm
time
srand
atoi
strchr
rand
realloc
sprintf
malloc
strstr
free

Exports

Exports

GetDLlVersion
Run
Sunbelt

Sections

.text
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 704B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 790B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy