65c61c84b2b6473044304e9bfd22df33f3b98fa90db4fcc59056b85bd27f50ee | Triage

Submit
Reports

Overview

overview

3

Static

static

65c61c84b2...ee.dll

windows7-x64

1

65c61c84b2...ee.dll

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

65c61c84b2b6473044304e9bfd22df33f3b98fa90db4fcc59056b85bd27f50ee.dll

Resource

win7-20220901-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

65c61c84b2b6473044304e9bfd22df33f3b98fa90db4fcc59056b85bd27f50ee.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

65c61c84b2b6473044304e9bfd22df33f3b98fa90db4fcc59056b85bd27f50ee
Size

72KB
MD5

0422af5e1d4f29423dbead49e76fd460
SHA1

a35a04089b3599844ccbf93afde418d453933887
SHA256

65c61c84b2b6473044304e9bfd22df33f3b98fa90db4fcc59056b85bd27f50ee
SHA512

86359b653c9e47e2d5b5d47c8e10086db8a1fe0f70b09ac101d92ea317e02b70bebeec7a86e3ee3e9584718d448a49a7758a85e05a8e68fc139a72b4376f7452
SSDEEP

768:9doYItUVp4TbQcthznmqfUyML/iAPeQjmhILuaGF8AHpkSqTps:9doXtUETRUBP9uBtHFqTq

Score

N/A

Malware Config

Signatures

Files

65c61c84b2b6473044304e9bfd22df33f3b98fa90db4fcc59056b85bd27f50ee
.dll windows x86

2b2eb1d73c08ca1c2e630d11ab24f217

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

OpenProcess
VirtualQuery
LoadLibraryExA
GetProcAddress
GetVersion
GetCurrentProcess
GetProcessHeap
GetModuleHandleA
ExitProcess
HeapAlloc
HeapReAlloc
HeapFree
IsBadReadPtr
FreeLibrary
LoadLibraryA
LCMapStringA

user32

wsprintfA
MessageBoxA

msvcrt

free
memmove
??3@YAXPAX@Z
atoi
_ftol
strchr
malloc
strncmp
__CxxFrameHandler

ws2_32

gethostname
WSAStartup
WSACleanup

Exports

Exports

DriverProc
modMessage
modmCallback

Sections

.text
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 965B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vmp0
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 564B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 908B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy