8e8457f85ae56786dfc3027abf434708a3b23810269ff78266757c60e50efe80 | Triage

Submit
Reports

Overview

overview

1

Static

static

8e8457f85a...80.dll

windows7-x64

1

8e8457f85a...80.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

8e8457f85ae56786dfc3027abf434708a3b23810269ff78266757c60e50efe80.dll

Resource

win7-20220812-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

8e8457f85ae56786dfc3027abf434708a3b23810269ff78266757c60e50efe80.dll

Resource

win10v2004-20220901-en

windows10-2004-x64

3 signatures

150 seconds

General

Target

8e8457f85ae56786dfc3027abf434708a3b23810269ff78266757c60e50efe80
Size

36KB
MD5

0bd1ec617077911fb1b949eb78daa0db
SHA1

7ab311424c2aba66ca0ca26aba355c23f3a27f41
SHA256

8e8457f85ae56786dfc3027abf434708a3b23810269ff78266757c60e50efe80
SHA512

65c3c08432bb2768c0301aeb45ff43b59bfc3ad2838895bf978feae7cbd2ca513f4eda48e2625c807be6aef0a985c07c151a0948af18323936af8fb1f1ad5b21
SSDEEP

384:3ZN8CaVTUL5wmIgK6mkpJVU5fpeszfeD6VJUE7OWT7STq:3ZN8C0E5NIUmkpjUN0szeD6vUYla

Score

N/A

Malware Config

Signatures

Files

8e8457f85ae56786dfc3027abf434708a3b23810269ff78266757c60e50efe80
.dll regsvr32 windows x86

25562bbba920a714d012b409f276020a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
DeleteFileA
InterlockedIncrement
GetLocalTime
LoadLibraryA
GetProcAddress
GetWindowsDirectoryA
GetSystemDirectoryA
GetModuleFileNameA

user32

CallNextHookEx
GetMessageA
TranslateMessage
DispatchMessageA
UnhookWindowsHookEx
RegisterClassExA
KillTimer
SetTimer
FindWindowExA
PostMessageA
DefWindowProcA
CreateWindowExA
ShowWindow

advapi32

RegQueryValueExA
RegOpenKeyExA
RegSetValueExA
RegCreateKeyExA
RegCloseKey

msvcrt

_initterm
free
strrchr
_access
strstr
__CxxFrameHandler
??2@YAPAXI@Z
_stricmp
malloc
_adjust_fdiv
_strlwr
??3@YAXPAX@Z
fclose
fwrite
fopen
sprintf
strchr

Exports

Exports

DllRegisterServer
DllUnregisterServer
LWQhISwsApg
MjaTSc
qdBWktSNj

Sections

.text
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 854B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy