2164dd1f3f83ec40c3c043470d755dae80bb2c3f48c707eee3fc1a1ffea5aa0f | Triage

Submit
Reports

Overview

overview

1

Static

static

2164dd1f3f...0f.dll

windows7-x64

1

2164dd1f3f...0f.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

2164dd1f3f83ec40c3c043470d755dae80bb2c3f48c707eee3fc1a1ffea5aa0f.dll

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

2164dd1f3f83ec40c3c043470d755dae80bb2c3f48c707eee3fc1a1ffea5aa0f.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

2164dd1f3f83ec40c3c043470d755dae80bb2c3f48c707eee3fc1a1ffea5aa0f
Size

70KB
MD5

a2c195fd04a8b71e88ca268612f059e1
SHA1

29eed173caa3f5b8ed43c236c381e3f71b796188
SHA256

2164dd1f3f83ec40c3c043470d755dae80bb2c3f48c707eee3fc1a1ffea5aa0f
SHA512

e69109804902024060d2b99001d049a06323682a54aa8bef1234679732165d908875c65b313d170c23f442e023df90ec95229894510bd7bf45a84671e46ac0c5
SSDEEP

1536:Prq4HOMzOah4YEcKUS/1yBVJjEyKQ8RCN5hG2KIL9J:Prq4Ht5h4Y6US98VJjrKlC1R

Score

N/A

Malware Config

Signatures

Files

2164dd1f3f83ec40c3c043470d755dae80bb2c3f48c707eee3fc1a1ffea5aa0f
.dll windows x86

7e9ab1393991704d25bff560f982352e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

RtlInitString
RtlCheckRegistryKey
ZwOpenProcess
IoMakeAssociatedIrp
RtlEqualUnicodeString
RtlUpperChar
RtlRandom
RtlNtStatusToDosError
RtlInitializeBitMap
RtlUnicodeStringToAnsiString
RtlMapGenericMask
ExNotifyCallback
FsRtlCheckOplock
RtlInitUnicodeString
ZwQueryValueKey
IoAllocateMdl
KeSetBasePriorityThread
MmAllocateContiguousMemory
RtlIntegerToUnicodeString
KeSetTargetProcessorDpc
RtlTimeToSecondsSince1970
IoStartTimer
RtlCompareString
KeUnstackDetachProcess
RtlEqualString
IoFreeController

Sections

.text
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 1024B - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 832B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy