3a957a8d5405af024163a93a44569cfa1c0838149a78eecee8685bff29c826fd | Triage

Submit
Reports

Overview

overview

1

Static

static

3a957a8d54...fd.dll

windows7-x64

1

3a957a8d54...fd.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

3a957a8d5405af024163a93a44569cfa1c0838149a78eecee8685bff29c826fd.dll

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

3a957a8d5405af024163a93a44569cfa1c0838149a78eecee8685bff29c826fd.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

3a957a8d5405af024163a93a44569cfa1c0838149a78eecee8685bff29c826fd
Size

51KB
MD5

0cf97dd3d591e3e3e561e6320ca35c78
SHA1

17ffb02f764e69dfe811576b3d5e94191eda7a8e
SHA256

3a957a8d5405af024163a93a44569cfa1c0838149a78eecee8685bff29c826fd
SHA512

790a9ad504cc514f2f62569275c3a04f24db53df0204474761f9fe8ff800aeaf4e270202d059dffa0f77e72b1eaf2228712c8898d9b8c102332e282c29fd8ceb
SSDEEP

768:wuC1Tbgy6K+aoCAXoRzZKMlHlH7KKlmUV7GsMrzGIDznnnnnDg:TIbguQoOQoKl9ROzbnn

Score

N/A

Malware Config

Signatures

Files

3a957a8d5405af024163a93a44569cfa1c0838149a78eecee8685bff29c826fd
.dll windows x86

cdda70fe86c38a2c015d3ac64f90feb0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

RtlCreateSecurityDescriptor
RtlCompareString
PsGetCurrentProcess
ZwClose
KeDelayExecutionThread
RtlInitUnicodeString
MmSecureVirtualMemory
RtlLengthRequiredSid
RtlCharToInteger
KeQueryInterruptTime
RtlIntegerToUnicodeString
KeInsertByKeyDeviceQueue
IoCreateSynchronizationEvent
KeInitializeTimerEx
RtlAddAccessAllowedAceEx
ExNotifyCallback
IoConnectInterrupt
KeRemoveDeviceQueue
KeCancelTimer
RtlEqualString
KeResetEvent
IoRegisterDeviceInterface
RtlInitString
ExLocalTimeToSystemTime
KeInsertHeadQueue
RtlTimeToTimeFields
RtlEqualUnicodeString
IoFreeMdl

hal

KeQueryPerformanceCounter
HalAcquireDisplayOwnership

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 74KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 744B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy