c2ca3deab80e5a99a7eec95e2193270c131ec2bef4051e57d583375162736e17 | Triage

Submit
Reports

Overview

overview

1

Static

static

c2ca3deab8...17.dll

windows7-x64

1

c2ca3deab8...17.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

c2ca3deab80e5a99a7eec95e2193270c131ec2bef4051e57d583375162736e17.dll

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

c2ca3deab80e5a99a7eec95e2193270c131ec2bef4051e57d583375162736e17.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

c2ca3deab80e5a99a7eec95e2193270c131ec2bef4051e57d583375162736e17
Size

331KB
MD5

4a50c9696c20bc1055860d92157a6dbb
SHA1

724bc1564043a6ed1a1bf22c745ae6b76ac68576
SHA256

c2ca3deab80e5a99a7eec95e2193270c131ec2bef4051e57d583375162736e17
SHA512

95c9ee922e58bb4acd4741e16fc43faf71a1d145826b187cfd465ad443599fad0237991ab818e1a577640d3a893607abb6be48d6c62e0b00ce88662eb0eaddcc
SSDEEP

6144:EPXfmmgPCuLj5la/n/jtglEoa4vHg+u83lyn1q+/jst8KHfjIckkQYdWihh19:EXHg6u3a6lZa4fg+e1q+/4ttHfjIc7Qk

Score

N/A

Malware Config

Signatures

Files

c2ca3deab80e5a99a7eec95e2193270c131ec2bef4051e57d583375162736e17
.dll windows x86

9e2a5e7de22ae6e258cdadf530793b8f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

RtlInitUnicodeString
RtlCompareString
ExUnregisterCallback
IoCreateFile
MmForceSectionClosed
RtlInitString
RtlEqualUnicodeString
FsRtlAllocateFileLock
FsRtlIsDbcsInExpression
ExRaiseAccessViolation
ExCreateCallback
RtlEnumerateGenericTable
RtlFindUnicodePrefix
_wcsupr
RtlEqualString
RtlHashUnicodeString
IoOpenDeviceRegistryKey

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.file
Size: 512B - Virtual size: 320B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 5KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.type
Size: 1024B - Virtual size: 824B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 600B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy