34921ee280c1cfa8b0056950cd42320145d95f366af9db4db4ed782f2bfc3928 | Triage

Submit
Reports

Overview

overview

3

Static

static

34921ee280...28.dll

windows7-x64

3

34921ee280...28.dll

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

34921ee280c1cfa8b0056950cd42320145d95f366af9db4db4ed782f2bfc3928.dll

Resource

win7-20220901-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

34921ee280c1cfa8b0056950cd42320145d95f366af9db4db4ed782f2bfc3928.dll

Resource

win10v2004-20220901-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

34921ee280c1cfa8b0056950cd42320145d95f366af9db4db4ed782f2bfc3928
Size

2.9MB
MD5

46ce1de3254ee1fc6d45108becaee08a
SHA1

104a05770088f4d3333ef2227fe3c051bb821cd5
SHA256

34921ee280c1cfa8b0056950cd42320145d95f366af9db4db4ed782f2bfc3928
SHA512

4105e944facbf8e701b2d66efc12ecd922c1cc5b28b7614ed2b716449b64504c742ab900a5cbb76ab2e60310f7cd6c43a5d8dea9488f91322b0560e112d7baad
SSDEEP

49152:YcLLWIDDzch+kqcpDXriQnH/FjVWRNK0miyb+WXFm5pTWJBRNRFH:lLLFcwkqcpDXri6ZWRoPiRT5dG7NR

Score

N/A

Malware Config

Signatures

Files

34921ee280c1cfa8b0056950cd42320145d95f366af9db4db4ed782f2bfc3928
.dll windows x86

7533107bad181ce58a71ccfcb68e2b5d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

oleaut32

SysFreeString

advapi32

RegQueryValueExW

user32

MessageBoxA

msimg32

GradientFill

gdi32

UnrealizeObject

version

VerQueryValueW

ole32

OleUninitialize

msvcrt

memset

comctl32

InitializeFlatSB

shell32

Shell_NotifyIconW

winspool.drv

OpenPrinterW

Exports

Exports

GetImage

Sections

.text
Size: 2.9MB - Virtual size: 8.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy