a5cec1afcb86313e5d620900d65bd8a46f1adf4504fb6c08a593abe8d635d00b | Triage

Submit
Reports

Overview

overview

4

Static

static

a5cec1afcb...0b.dll

windows7-x64

1

a5cec1afcb...0b.dll

windows10-2004-x64

4

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

a5cec1afcb86313e5d620900d65bd8a46f1adf4504fb6c08a593abe8d635d00b.dll

Resource

win7-20220901-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

a5cec1afcb86313e5d620900d65bd8a46f1adf4504fb6c08a593abe8d635d00b.dll

Resource

win10v2004-20220901-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

a5cec1afcb86313e5d620900d65bd8a46f1adf4504fb6c08a593abe8d635d00b
Size

17KB
MD5

559841655f66795dbfbbcf5e9008fb31
SHA1

965159a696f47ca9128e2e5bd0a99f71ed9b8587
SHA256

a5cec1afcb86313e5d620900d65bd8a46f1adf4504fb6c08a593abe8d635d00b
SHA512

cf1c7f04811acd18ea35fec70d68ec154c49edc25c79956f161774d4e9cadcbad633b5ac314e7566b05b8b245294b6808686e61daa3d2491964522b4171a5fb8
SSDEEP

384:GiHkXw+saVknOktpRe+LreQDhiehGxuUJh2htA:tEXw+juOkT0+LrNwqGcUJshi

Score

N/A

Malware Config

Signatures

Files

a5cec1afcb86313e5d620900d65bd8a46f1adf4504fb6c08a593abe8d635d00b
.dll windows x64

1a2927e01a0b2a01d537099e27c75534

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

msvcrt

_ismbbgraph
_mbsspnp
memset
__iscsym
wcscspn

advapi32

CryptDeriveKey

ole32

CoUninitialize

crypt32

CertGetCertificateChain

kernel32

GetModuleHandleW
SetFileAttributesW
IsDebuggerPresent
IsProcessorFeaturePresent
FileTimeToLocalFileTime
SetHandleInformation
TransactNamedPipe
CreateProcessW
GetProcAddress
GlobalAlloc
VirtualProtect
HeapUnlock
SuspendThread

Exports

Exports

payload

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 96B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 36B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy