DriverProc
Static task
static1
Behavioral task
behavioral1
Sample
6fa339ab7a161376b945a95edc24fa3e539a9c41b2a5db9e818abe1cac325a00.dll
Resource
win7-20220812-en
General
-
Target
6fa339ab7a161376b945a95edc24fa3e539a9c41b2a5db9e818abe1cac325a00
-
Size
160KB
-
MD5
0da863a9f198cfee25bacea1ec5e5090
-
SHA1
378b7013eb46e899956fd72772314935de037b26
-
SHA256
6fa339ab7a161376b945a95edc24fa3e539a9c41b2a5db9e818abe1cac325a00
-
SHA512
99928a9bce0d152da5b153b349ca72a98455e615b491c17ee15ab0756f81e5a3a0a5f9cfea0ab56a4a236f8c9f61f8056c6d47a7e5859924387d5e9874b17664
-
SSDEEP
3072:j3fB0uVjn85lq6Kp8StaVu+a/SFiX/l6KTEXVOJNEhXdQP01fxgC/GhO7hqAQm:bBRVjb4ja/SUXKOJNEzfxjOhA
Malware Config
Signatures
Files
-
6fa339ab7a161376b945a95edc24fa3e539a9c41b2a5db9e818abe1cac325a00.dll windows x86
e0b20751cec3c4b59c8e5da22c13900e
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
winmm
GetDriverModuleHandle
DefDriverProc
kernel32
GlobalLock
GlobalAlloc
lstrlenA
MulDiv
LocalFree
LCMapStringW
LCMapStringA
GetSystemInfo
VirtualProtect
LoadLibraryA
LocalAlloc
GlobalHandle
GlobalUnlock
GlobalFree
MultiByteToWideChar
HeapSize
GetStdHandle
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCommandLineA
GetVersionExA
HeapAlloc
HeapFree
ExitProcess
TlsAlloc
SetLastError
GetLastError
TlsFree
TlsSetValue
TlsGetValue
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
SetHandleCount
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
UnhandledExceptionFilter
WriteFile
LeaveCriticalSection
EnterCriticalSection
VirtualAlloc
HeapReAlloc
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetStringTypeA
GetStringTypeW
GetCPInfo
GetLocaleInfoA
RtlUnwind
GetACP
GetOEMCP
InitializeCriticalSection
InterlockedExchange
VirtualQuery
user32
MessageBoxA
LoadStringA
GetWindowLongA
SendDlgItemMessageA
DialogBoxParamA
SetWindowLongA
EndDialog
advapi32
RegEnumKeyExA
RegOpenKeyA
RegQueryValueA
RegCreateKeyExA
RegSetValueExA
RegCloseKey
RegQueryValueExA
RegOpenKeyExA
Exports
Exports
Sections
.text Size: 60KB - Virtual size: 58KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 12KB - Virtual size: 10KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 8KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 8KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 8KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
.rmnet Size: 60KB - Virtual size: 60KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE