10fb91a427e5affdf0cc64604da40fc1612b733d4740c8a2cffef6b7c431ed7b | Triage

Submit
Reports

Overview

overview

1

Static

static

10fb91a427...7b.dll

windows7-x64

1

10fb91a427...7b.dll

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

10fb91a427e5affdf0cc64604da40fc1612b733d4740c8a2cffef6b7c431ed7b.dll

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

10fb91a427e5affdf0cc64604da40fc1612b733d4740c8a2cffef6b7c431ed7b.dll

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

10fb91a427e5affdf0cc64604da40fc1612b733d4740c8a2cffef6b7c431ed7b
Size

51KB
MD5

43939a0bdeb57f1dd86742947363ecae
SHA1

89947580cd72f555b4894109ed2f77e426193dc2
SHA256

10fb91a427e5affdf0cc64604da40fc1612b733d4740c8a2cffef6b7c431ed7b
SHA512

c17b26fd59cb3a02d46723cdd5056c4a2d32e2213a623e3292d8d4dc280f41b6f6fa0f7a06c7580edfa87da53486266edd3dbe351e8306973f695663099f13a4
SSDEEP

1536:N6d4ylwJeb6hM4YF+gu/1XNhVdjEyWOE:N6d4yCJeb0M4YF+gu9LVdjrWO

Score

N/A

Malware Config

Signatures

Files

10fb91a427e5affdf0cc64604da40fc1612b733d4740c8a2cffef6b7c431ed7b
.dll windows x86

c8911a335683c164157265f00e04a1b5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

RtlEqualUnicodeString
RtlCompareString
RtlEqualString
IoRequestDeviceEject
RtlxAnsiStringToUnicodeSize
RtlClearAllBits
RtlInitUnicodeString
SeAssignSecurity
RtlxUnicodeStringToAnsiSize
PsTerminateSystemThread
IoCreateFile
RtlFindLeastSignificantBit
IoGetDeviceToVerify
ZwQueryValueKey
RtlIntegerToUnicodeString
PsGetCurrentProcessId
RtlFindUnicodePrefix
IoBuildSynchronousFsdRequest
PsSetLoadImageNotifyRoutine
RtlFindClearBitsAndSet
RtlUpperChar
IoGetRequestorProcessId
RtlInitAnsiString
RtlClearBits
RtlInitString
IoUpdateShareAccess
MmMapLockedPagesSpecifyCache

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 1024B - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 828B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy