efbfe7394e384313e4fcca87e8d9ca448980f0127b24e6d3fcfbce2623f0acbd | Triage

Submit
Reports

Overview

overview

1

Static

static

efbfe7394e...bd.dll

windows7-x64

1

efbfe7394e...bd.dll

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

efbfe7394e384313e4fcca87e8d9ca448980f0127b24e6d3fcfbce2623f0acbd.dll

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

efbfe7394e384313e4fcca87e8d9ca448980f0127b24e6d3fcfbce2623f0acbd.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

efbfe7394e384313e4fcca87e8d9ca448980f0127b24e6d3fcfbce2623f0acbd
Size

26KB
MD5

efd2f60c6050eb0e6a66bb6836e4ff44
SHA1

e8c5717af67d5930b78861daeb8e77beb2b9f9de
SHA256

efbfe7394e384313e4fcca87e8d9ca448980f0127b24e6d3fcfbce2623f0acbd
SHA512

cd3539a112ad4c0a9c14ec4812618f75ead05f40de549bcda53934bec00cb68feb53a2f92608309a6d261b335edef446a2205f63d76d279d482b1c8096ee52de
SSDEEP

384:BRwQ78nciY+K24VcqThCB0PTC4mEhEuX7XW9c+0terk85s:DhYn9BOcqTh+0PTC4mAlXy9c+0Gd5

Score

N/A

Malware Config

Signatures

Files

efbfe7394e384313e4fcca87e8d9ca448980f0127b24e6d3fcfbce2623f0acbd
.dll windows x86

0d77ac82b2e26ecea0c1fc152086225c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapAlloc
LoadLibraryA
WriteFile
WideCharToMultiByte
HeapFree
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
FreeEnvironmentStringsA
GetCommandLineA
GetProcAddress
GetModuleHandleA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
lstrcpyA
GetOEMCP
SetHandleCount
GetFileType
GetStdHandle
GetStartupInfoA
GetModuleFileNameA
GetCPInfo
GetACP

ltkrn13n

ord169
ord162
ord192
ord163
ord190
ord188
ord221
ord189
ord283
ord191
ord282

Exports

Exports

DllMain
fltDeletePage
fltInfo
fltLoad
fltSave

Sections

.text
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 916B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 890B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy