d46944fb68a3137efb9875c7747a5c14e41961df3fc96d27f1098eae32936e12 | Triage

Submit
Reports

Overview

overview

1

Static

static

d46944fb68...12.dll

windows7-x64

1

d46944fb68...12.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

d46944fb68a3137efb9875c7747a5c14e41961df3fc96d27f1098eae32936e12.dll

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

d46944fb68a3137efb9875c7747a5c14e41961df3fc96d27f1098eae32936e12.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

d46944fb68a3137efb9875c7747a5c14e41961df3fc96d27f1098eae32936e12
Size

65KB
MD5

80c3460c8df995980488fe3bcb62afaa
SHA1

b5e7110cd5c505c892d0040ac1c9cd142846fc88
SHA256

d46944fb68a3137efb9875c7747a5c14e41961df3fc96d27f1098eae32936e12
SHA512

37bd1a0a9770897e747c0ff60e395007c32c6721a6619f3cce0932ab48608a408a95599f826ae88a6b2a775e349047b87907326d3014bcb6f0f24d2e2e06eb83
SSDEEP

1536:Dtpj95M7I4YrcKY88w/17pXjEyoX9Br0Ed7/qj:Dtpj95ME4YzYG99jroNBr0Ed7/qj

Score

N/A

Malware Config

Signatures

Files

d46944fb68a3137efb9875c7747a5c14e41961df3fc96d27f1098eae32936e12
.dll windows x86

4c975f758f3f353909ec4fa6b8c542f5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

FsRtlNotifyUninitializeSync
RtlCharToInteger
RtlTimeToTimeFields
RtlIntegerToUnicodeString
RtlUpperChar
ZwEnumerateValueKey
RtlxAnsiStringToUnicodeSize
IoCreateStreamFileObjectLite
RtlInitUnicodeString
RtlCopyUnicodeString
RtlMapGenericMask
IoSetSystemPartition
RtlCompareString
RtlxUnicodeStringToAnsiSize
IoConnectInterrupt
RtlFindLeastSignificantBit
ObReferenceObjectByHandle
IoCreateSynchronizationEvent
RtlInitString
ZwClose
SeSinglePrivilegeCheck
KeResetEvent
SeDeassignSecurity
ZwOpenSymbolicLinkObject
RtlEqualUnicodeString
RtlUpperString
ExIsProcessorFeaturePresent
MmPageEntireDriver
RtlEqualString

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 1024B - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 720B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy