c2e52340326696bd72014bd653b298fd12e5dfc521191ebe2f722c4ad2c3a4ab | Triage

Submit
Reports

Overview

overview

1

Static

static

c2e5234032...ab.dll

windows7-x64

1

c2e5234032...ab.dll

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

c2e52340326696bd72014bd653b298fd12e5dfc521191ebe2f722c4ad2c3a4ab.dll

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

c2e52340326696bd72014bd653b298fd12e5dfc521191ebe2f722c4ad2c3a4ab.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

c2e52340326696bd72014bd653b298fd12e5dfc521191ebe2f722c4ad2c3a4ab
Size

28KB
MD5

0355ef086123beb952b9e4d2880434f7
SHA1

61a0055e331f5ada5dc2e39292fa39278e67edcd
SHA256

c2e52340326696bd72014bd653b298fd12e5dfc521191ebe2f722c4ad2c3a4ab
SHA512

6c444ac11a199bf556287597494fb842ac7d2f2650c9fc27912ddaa49717eb6be81fcd62167a5d81556f41adba3116823310eddc01b095364408ff4a37c7354d
SSDEEP

768:06ngNc4/zHY/ZfNshsFWeLaKBHbhZ//tAQqFDf9:06y7/+lGKROQqxV

Score

N/A

Malware Config

Signatures

Files

c2e52340326696bd72014bd653b298fd12e5dfc521191ebe2f722c4ad2c3a4ab
.dll windows x86

82b16c1293cfbc24f0622e3cda7efeee

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

MmUnmapLockedPages
MmProtectMdlSystemAddress
MmAddVerifierThunks
MmAllocateMappingAddress
MmAdvanceMdl
ZwFsControlFile
RtlIntegerToUnicodeString
RtlCheckRegistryKey
_strupr

Exports

Exports

__ZwAllocateVirtualMemory@4
__ZwFreeVirtualMemory@8
__ZwWaitForSingleObject@4

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.excode
Size: 512B - Virtual size: 347B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 300B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 162B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

INIT
Size: 512B - Virtual size: 288B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy