d875f15d195e342ad010ebdd9587872ebbfc61fc4e574dd4ea61b3e68ecd743b | Triage

Submit
Reports

Overview

overview

1

Static

static

d875f15d19...3b.dll

windows7-x64

1

d875f15d19...3b.dll

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

d875f15d195e342ad010ebdd9587872ebbfc61fc4e574dd4ea61b3e68ecd743b.dll

Resource

win7-20221111-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

d875f15d195e342ad010ebdd9587872ebbfc61fc4e574dd4ea61b3e68ecd743b.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

d875f15d195e342ad010ebdd9587872ebbfc61fc4e574dd4ea61b3e68ecd743b
Size

76KB
MD5

8adfbacc6021f8b252fd38052e09ad35
SHA1

5bee22bb1cf58576fdd211e7a0a9e1f1a50e7936
SHA256

d875f15d195e342ad010ebdd9587872ebbfc61fc4e574dd4ea61b3e68ecd743b
SHA512

2fc581eaf9a59b8296407cfc2bf1677989ed623f92d0bd2d66a2688345d8585752d233f453a111838af5eb977b20bcac5d0eb8e0e6c5e8633da3d9df3a980643
SSDEEP

1536:oAcF2O06bL7BwVhPAl3gfqPd9EWJZng5yzvTWcJshrrkpGIHqtT:oAcsO0WLYhPAlCcTJOyRHpvk

Score

N/A

Malware Config

Signatures

Files

d875f15d195e342ad010ebdd9587872ebbfc61fc4e574dd4ea61b3e68ecd743b
.dll windows x86

5182cab3f3c35132bcbe6aa1be2e9784

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
TerminateProcess
lstrcpyA
LoadLibraryA
WriteFile
WideCharToMultiByte
GetEnvironmentStringsW
FreeEnvironmentStringsW
HeapFree
HeapAlloc
GetCommandLineA
GetProcAddress
GetModuleHandleA
GetVersion
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
GetEnvironmentStrings
GetModuleFileNameA
GetCurrentProcess
SetHandleCount
GetFileType
GetStdHandle
GetStartupInfoA
GetCPInfo
GetACP
GetOEMCP
FreeEnvironmentStringsA

ltkrn12n

ord192
ord162
ord189
ord188
ord191
ord190

Exports

Exports

DllMain
fltInfo
fltLoad
fltSave

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 57KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 720B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy