f688b37ceb4e1ff759b72d8e604d9ed6fd3ce8c5027d520fc65b04c97b6ef415 | Triage

Submit
Reports

Overview

overview

1

Static

static

f688b37ceb...15.dll

windows7-x64

1

f688b37ceb...15.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

f688b37ceb4e1ff759b72d8e604d9ed6fd3ce8c5027d520fc65b04c97b6ef415.dll

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

f688b37ceb4e1ff759b72d8e604d9ed6fd3ce8c5027d520fc65b04c97b6ef415.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

f688b37ceb4e1ff759b72d8e604d9ed6fd3ce8c5027d520fc65b04c97b6ef415
Size

56KB
MD5

a172e067d0bd15cf0a58a30188b452c6
SHA1

46166a06651bf453bad0efae6a98ae42f7973eb9
SHA256

f688b37ceb4e1ff759b72d8e604d9ed6fd3ce8c5027d520fc65b04c97b6ef415
SHA512

74c171039bb9629ec95164db3c45ddb357832fc2d760721b9ecfa9e0a4de1b1bb49ae86b230a75963d23e5d6f16404c6cb6bad172a4e8695ca23af55518aaf44
SSDEEP

1536:nbpzVodKFyTiF6RogMCfHhqzuqj9fHV8N5oy65K:blVdh8RPzkl9f1A5o7K

Score

N/A

Malware Config

Signatures

Files

f688b37ceb4e1ff759b72d8e604d9ed6fd3ce8c5027d520fc65b04c97b6ef415
.dll windows x86

9d939f5a99d892d96b00f724fb1c3091

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

SeTokenIsRestricted
RtlFindClearBitsAndSet
KePulseEvent
RtlEqualString
ExAllocatePoolWithQuotaTag
ExCreateCallback
IoWMIRegistrationControl
RtlInitString
SeTokenIsAdmin
RtlCompareString
RtlEqualUnicodeString
ExRaiseDatatypeMisalignment
IoGetDeviceProperty
PsDereferencePrimaryToken
RtlIntegerToUnicodeString
IoReportDetectedDevice
MmSecureVirtualMemory
RtlAddAccessAllowedAceEx
RtlInitUnicodeString
RtlCharToInteger
ExReinitializeResourceLite
IoDisconnectInterrupt
RtlInitializeSid
RtlSecondsSince1970ToTime

Sections

.text
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 1024B - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 808B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy