8608b22f1fb35b68c0a08208a649aeadc6543b99ba95c9c73e600a6d71767307 | Triage

Submit
Reports

Overview

overview

1

Static

static

8608b22f1f...07.dll

windows7-x64

1

8608b22f1f...07.dll

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

8608b22f1fb35b68c0a08208a649aeadc6543b99ba95c9c73e600a6d71767307.dll

Resource

win7-20220901-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

8608b22f1fb35b68c0a08208a649aeadc6543b99ba95c9c73e600a6d71767307.dll

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

8608b22f1fb35b68c0a08208a649aeadc6543b99ba95c9c73e600a6d71767307
Size

331KB
MD5

9218adaa504144f3a112a0d8e838fcdb
SHA1

0398a7770f6f1bd727ed572b142e1e5b8595aa5c
SHA256

8608b22f1fb35b68c0a08208a649aeadc6543b99ba95c9c73e600a6d71767307
SHA512

5762f4a496f55646cd13516fe164e540aa182b18d1c071f94dce51f4d0b7f76dae7e326ca7a7473a9058a8b8983de9ccd1e9e7a0ce2e8dff5f23ceadab288b9d
SSDEEP

6144:lllnQFcEVXt87Cqi/zznv4sGA8sxWae6u2Bya/rtU61I+AK3uK6HxjnLJtQodWiK:lnQWWXtBqWLus4ae6lyap1I+Ayu7Hxja

Score

N/A

Malware Config

Signatures

Files

8608b22f1fb35b68c0a08208a649aeadc6543b99ba95c9c73e600a6d71767307
.dll windows x86

459a19b14f6e6ec7bf37a343e5f9ad30

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

RtlFindUnicodePrefix
IoInvalidateDeviceRelations
RtlCharToInteger
RtlEqualUnicodeString
strncpy
RtlInitString
RtlFindNextForwardRunClear
IoGetRequestorProcessId
KeCancelTimer
KeRemoveQueue
ExRaiseDatatypeMisalignment
RtlPrefixUnicodeString
IoFreeMdl
RtlIntegerToUnicodeString
FsRtlFastUnlockSingle
RtlCompareString
KeInitializeTimerEx
RtlEqualString
SeAssignSecurity
PsGetCurrentProcess
RtlInitUnicodeString

Sections

.text
Size: 23KB - Virtual size: 87KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 880B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy