034af725aaf40efda52f68e95b97f7de655f1f24b72670ba1fd9b5b34dad4e34 | Triage

Submit
Reports

Overview

overview

1

Static

static

034af725aa...34.dll

windows7-x64

1

034af725aa...34.dll

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

034af725aaf40efda52f68e95b97f7de655f1f24b72670ba1fd9b5b34dad4e34.dll

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

034af725aaf40efda52f68e95b97f7de655f1f24b72670ba1fd9b5b34dad4e34.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

034af725aaf40efda52f68e95b97f7de655f1f24b72670ba1fd9b5b34dad4e34
Size

73KB
MD5

84955b3aa1eec49f50360a7b2e2cf733
SHA1

cff13252b050d77c847e6b9852431e0906f981a8
SHA256

034af725aaf40efda52f68e95b97f7de655f1f24b72670ba1fd9b5b34dad4e34
SHA512

0e9c66f12f2697a0a3a2774d197d58a978c6fcf511c5354d3840f49c7bcc9ff10cb031e374cb3d4c60c30a0755f4169e12052786c8353c15deec224a190ad400
SSDEEP

1536:Ttpj95M7I4YrcKY88w/17pXjEyoXoUEe4Z8E4yqyot1E:Ttpj95ME4YzYG99jro4UDi8E4yTot1E

Score

N/A

Malware Config

Signatures

Files

034af725aaf40efda52f68e95b97f7de655f1f24b72670ba1fd9b5b34dad4e34
.dll windows x86

4c975f758f3f353909ec4fa6b8c542f5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

FsRtlNotifyUninitializeSync
RtlCharToInteger
RtlTimeToTimeFields
RtlIntegerToUnicodeString
RtlUpperChar
ZwEnumerateValueKey
RtlxAnsiStringToUnicodeSize
IoCreateStreamFileObjectLite
RtlInitUnicodeString
RtlCopyUnicodeString
RtlMapGenericMask
IoSetSystemPartition
RtlCompareString
RtlxUnicodeStringToAnsiSize
IoConnectInterrupt
RtlFindLeastSignificantBit
ObReferenceObjectByHandle
IoCreateSynchronizationEvent
RtlInitString
ZwClose
SeSinglePrivilegeCheck
KeResetEvent
SeDeassignSecurity
ZwOpenSymbolicLinkObject
RtlEqualUnicodeString
RtlUpperString
ExIsProcessorFeaturePresent
MmPageEntireDriver
RtlEqualString

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 1024B - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 720B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy