658daf5978f3e7e882b21917f5d9535a6dd5159106cea6761e9c0bc5d40999f1 | Triage

Submit
Reports

Overview

overview

1

Static

static

658daf5978...f1.dll

windows7-x64

1

658daf5978...f1.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

658daf5978f3e7e882b21917f5d9535a6dd5159106cea6761e9c0bc5d40999f1.dll

Resource

win7-20220812-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

658daf5978f3e7e882b21917f5d9535a6dd5159106cea6761e9c0bc5d40999f1.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

3 signatures

150 seconds

General

Target

658daf5978f3e7e882b21917f5d9535a6dd5159106cea6761e9c0bc5d40999f1
Size

32KB
MD5

93bc86d47bb53dce8a0ab1a30f1a25de
SHA1

26c038ebfbf48e04b258d32c32b9e0342aa6c8ef
SHA256

658daf5978f3e7e882b21917f5d9535a6dd5159106cea6761e9c0bc5d40999f1
SHA512

1180d283093f87781d5fd59c9786170dc9dbd39881bf52c2e47ae22d758ca56527de52bcbe5dd9189511aadabd5e1c487257807f242da7e1c2cd147ca993de1b
SSDEEP

768:i7xi2GbY2ilc5g/eAOkzgOwDU7uCuQ/w/Xq:MwVbY2ilKpAlCU7uYw/6

Score

N/A

Malware Config

Signatures

Files

658daf5978f3e7e882b21917f5d9535a6dd5159106cea6761e9c0bc5d40999f1
.dll regsvr32 windows x86

8c206fc8e76a8985fa030cd229ad663f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteFileA
InterlockedIncrement
GetWindowsDirectoryA
GetLocalTime
GetSystemDirectoryA
GetModuleFileNameA
GetProcAddress
LoadLibraryA
CloseHandle

user32

CallNextHookEx
GetMessageA
TranslateMessage
DispatchMessageA
UnhookWindowsHookEx
CreateWindowExA
ShowWindow
KillTimer
SetTimer
FindWindowExA
PostMessageA
DefWindowProcA
RegisterClassExA

advapi32

RegSetValueExA
RegOpenKeyExA
RegQueryValueExA
RegCreateKeyExA
RegCloseKey

msvcrt

_initterm
free
strchr
fopen
fwrite
fclose
strrchr
_stricmp
malloc
_adjust_fdiv
_strlwr
??2@YAPAXI@Z
??3@YAXPAX@Z
strstr
_access
sprintf
__CxxFrameHandler

Exports

Exports

DllGetClassObject
DllRegisterServer
DllUnregisterServer
PfzGsswb

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 850B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy