40a5f4e9cd85d6a7004dd236bea5de0e3cb16057e1ac514bc17668d56f7c189a | Triage

Submit
Reports

Overview

overview

8

Static

static

40a5f4e9cd...9a.dll

windows7-x64

8

40a5f4e9cd...9a.dll

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

40a5f4e9cd85d6a7004dd236bea5de0e3cb16057e1ac514bc17668d56f7c189a.dll

Resource

win7-20220812-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

40a5f4e9cd85d6a7004dd236bea5de0e3cb16057e1ac514bc17668d56f7c189a.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

40a5f4e9cd85d6a7004dd236bea5de0e3cb16057e1ac514bc17668d56f7c189a
Size

8KB
MD5

198fed5ce1b69847ba2516abf93719e6
SHA1

5a89a48fa8ef92d1a4b31ee20f3f630e73c1c6c2
SHA256

40a5f4e9cd85d6a7004dd236bea5de0e3cb16057e1ac514bc17668d56f7c189a
SHA512

a890bd610ea1b11ca879e32a17e89411304d00a4706ae160a119591599e870107767723a3ee79c50734caa76a8f6fcbc7160a6c66eaed8ea82edd4dfe88cbb11
SSDEEP

96:XzUvhoQdBGSKaAdFSumd+oUHP0VYUT6kKQ8xZuy2tYr8sWzyR7nts3Ax:XzUvhocBGSomd+5HPiYvwET2wVB23

Score

N/A

Malware Config

Signatures

Files

40a5f4e9cd85d6a7004dd236bea5de0e3cb16057e1ac514bc17668d56f7c189a
.dll windows x86

dcaf340a80f38086d0778737d72a5959

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
CloseHandle
CreateThread
LocalAlloc
GetVersionExA
LocalFree
GetEnvironmentVariableA
CreateProcessA
WriteFile
CreateFileA
GetCurrentProcess
GetLastError
HeapFree
GetProcessHeap
HeapAlloc

advapi32

RegOpenKeyExA
RegCloseKey
RegQueryValueExA
GetTokenInformation
GetSidSubAuthority
OpenProcessToken

ws2_32

connect
htons
closesocket
gethostbyname
send
WSAStartup
recv
socket

wininet

InternetOpenA
InternetReadFile
InternetOpenUrlA

user32

wvsprintfA

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 324B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 452B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy