2bd8c8dca99283e67db453389eba45625f79d94c8375ce61888448dd0e8607d1 | Triage

Submit
Reports

Overview

overview

6

Static

static

2bd8c8dca9...d1.dll

windows7-x64

6

2bd8c8dca9...d1.dll

windows10-2004-x64

6

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

2bd8c8dca99283e67db453389eba45625f79d94c8375ce61888448dd0e8607d1.dll

Resource

win7-20220812-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

2bd8c8dca99283e67db453389eba45625f79d94c8375ce61888448dd0e8607d1.dll

Resource

win10v2004-20220901-en

windows10-2004-x64

5 signatures

150 seconds

General

Target

2bd8c8dca99283e67db453389eba45625f79d94c8375ce61888448dd0e8607d1
Size

157KB
MD5

07208fa8b33b0b49852ccc14be20aa47
SHA1

303c404ae9325653093f92e65ee87b752f555cbb
SHA256

2bd8c8dca99283e67db453389eba45625f79d94c8375ce61888448dd0e8607d1
SHA512

dc7245b39d6190aa1cae55c3bbbb53943cae94ecb27651bf5ed0cea3eb12f7d6eb636c4c4de599f3d295aec0e31e58bc76a9d98a03610a0bf27a792017ee52a4
SSDEEP

3072:tuXnl4HEMfRmfP5xBiUkB4Egt4DJyCjsAcLdYsZMdwEGfXqWHOFZL:QCHEN3BKgtSwCjsAcCnGBHuFZ

Score

N/A

Malware Config

Signatures

Files

2bd8c8dca99283e67db453389eba45625f79d94c8375ce61888448dd0e8607d1
.dll windows x86

2d678cd6482486fe5a2181c3f2f2a7be

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
ExitProcess
FatalAppExitA
FindResourceA
GetACP
GetCommandLineA
GetCurrentThreadId
GetFileType
GetModuleHandleA
GetOEMCP
GetProcAddress
GetStartupInfoA
GetSystemTimeAsFileTime
GetVersion
HeapAlloc
HeapCreate
HeapReAlloc
HeapSize
IsValidCodePage
IsValidLocale
LeaveCriticalSection
MultiByteToWideChar
QueryPerformanceCounter
ReadFile
RtlUnwind
SetLastError
SetUnhandledExceptionFilter
TlsGetValue
lstrcatA
lstrcpynA
lstrlenW

msvcrt

__p__commode
__set_app_type
exit
fwprintf
setlocale
wcscpy
__getmainargs

user32

DestroyIcon
FindWindowA
GetUpdateRgn
ReleaseDC
UpdateWindow

winmm

mmioGetInfo
mmioRenameA
mmioSeek
timeGetTime
waveOutGetNumDevs
mmioAdvance

Exports

Exports

XFromIchMEUED

Sections

.text
Size: 96KB - Virtual size: 216KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 58KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy