79c8ca234fa2227e1e6e859a00831da8b5b91ead6ad90ebef5f2d1a446417a3a | Triage

Submit
Reports

Overview

overview

1

Static

static

79c8ca234f...3a.dll

windows7-x64

1

79c8ca234f...3a.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

79c8ca234fa2227e1e6e859a00831da8b5b91ead6ad90ebef5f2d1a446417a3a.dll

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

79c8ca234fa2227e1e6e859a00831da8b5b91ead6ad90ebef5f2d1a446417a3a.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

79c8ca234fa2227e1e6e859a00831da8b5b91ead6ad90ebef5f2d1a446417a3a
Size

73KB
MD5

7ab12e762992004f0b836962f690c734
SHA1

2a5f766a2313905774ee02ae6a6addf1a5f709e5
SHA256

79c8ca234fa2227e1e6e859a00831da8b5b91ead6ad90ebef5f2d1a446417a3a
SHA512

e630b9bbb98e43b75a25b5095094fb8668903807418f05a4c06bd4683543b61954d20bc1a3274a59022fbf55308c4d631d5944304e3accbb081251f73d332543
SSDEEP

1536:aw7PqdI8Q4GyRaPUZBYHBMzT+uuMe4f4G:aw2dy2RoWQMp4G

Score

N/A

Malware Config

Signatures

Files

79c8ca234fa2227e1e6e859a00831da8b5b91ead6ad90ebef5f2d1a446417a3a
.dll windows x86

d5fdad4ff16b4da5525bdb620b2f09a4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

RtlInitUnicodeString
RtlUpperChar
strcat
RtlCompareString
RtlUnicodeToOemN
RtlIntegerToUnicodeString
RtlInitString
ExDeleteResourceLite
FsRtlIsFatDbcsLegal
ZwQueryObject
RtlFindClearBits
RtlFillMemoryUlong
RtlUnicodeStringToInteger
IoBuildPartialMdl
IoInitializeIrp
RtlEqualUnicodeString
IoCheckEaBufferValidity
ZwReadFile
IoIsWdmVersionAvailable
IoCreateFile
RtlAddAccessAllowedAceEx
RtlEqualString

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 1024B - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 672B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy