a0de8d4dab83fb324f0ae9e41af4513e77b5d05c0626ffc9512297b162d9ef2e | Triage

Submit
Reports

Overview

overview

1

Static

static

a0de8d4dab...2e.dll

windows7-x64

1

a0de8d4dab...2e.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

a0de8d4dab83fb324f0ae9e41af4513e77b5d05c0626ffc9512297b162d9ef2e.dll

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

a0de8d4dab83fb324f0ae9e41af4513e77b5d05c0626ffc9512297b162d9ef2e.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

a0de8d4dab83fb324f0ae9e41af4513e77b5d05c0626ffc9512297b162d9ef2e
Size

72KB
MD5

2d0fe68865255669dbc1793bf654fafc
SHA1

e4fb3a1f7ff0a42ecb0e790efbfc90e11e42e8e5
SHA256

a0de8d4dab83fb324f0ae9e41af4513e77b5d05c0626ffc9512297b162d9ef2e
SHA512

23bf8fbded6120731e8c15e82930df041cc37cd146ece96ed5a0d5ce86eed6e8e3163beb8a3d351e9ec18e7079f759dc6c0f3b9801af6a1a463361b0563a33fe
SSDEEP

1536:WyIL5pmuYl+0HgV321J4oN4/bZGJYjzkzjgSxyyzGwipV8l5w8xJXO3O:WyIL5BNnoi1wjgYHFoV8lq8x0e

Score

N/A

Malware Config

Signatures

Files

a0de8d4dab83fb324f0ae9e41af4513e77b5d05c0626ffc9512297b162d9ef2e
.dll windows x86

d8f017280bd66d0b1a2af0bbd440b5e2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

RtlIntegerToUnicodeString
RtlAnsiCharToUnicodeChar
RtlCompareString
IoGetCurrentProcess
PsTerminateSystemThread
ObQueryNameString
MmSizeOfMdl
RtlEqualUnicodeString
PsLookupThreadByThreadId
RtlInitString
PsDereferencePrimaryToken
RtlCreateUnicodeString
KeDelayExecutionThread
FsRtlIsNameInExpression
RtlInitUnicodeString
KeBugCheck
RtlEqualString
KeReadStateSemaphore
SeCreateClientSecurity
RtlCreateSecurityDescriptor
RtlUpperChar
KeInitializeQueue
RtlQueryRegistryValues
RtlInitializeBitMap

Sections

.text
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 1024B - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 868B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy