6a206f0f318d416cbbe3f482a449d19cc5b1cb34ccfa8ebf6f862da9b37adf9f | Triage

Submit
Reports

Overview

overview

1

Static

static

6a206f0f31...9f.dll

windows7-x64

1

6a206f0f31...9f.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

6a206f0f318d416cbbe3f482a449d19cc5b1cb34ccfa8ebf6f862da9b37adf9f.dll

Resource

win7-20221111-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

6a206f0f318d416cbbe3f482a449d19cc5b1cb34ccfa8ebf6f862da9b37adf9f.dll

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

6a206f0f318d416cbbe3f482a449d19cc5b1cb34ccfa8ebf6f862da9b37adf9f
Size

73KB
MD5

61f9bad96947d3fb877e77c9dd2a1406
SHA1

d26463cc3ef76ba1427ef6ad980ccae556eb1a25
SHA256

6a206f0f318d416cbbe3f482a449d19cc5b1cb34ccfa8ebf6f862da9b37adf9f
SHA512

c0844a109c1812b29b1e007a0d8633bba88eab903112985621fbf79f1a199c981286ec38f39b93305a48747fa0cc051efb8154550525b8d47a150c67c91b2ae0
SSDEEP

1536:FS5X75KJUJrYWmyqph8TSw7VP02PtkzmTE1U9OoE/O0zjVXaWcE:wx7o0MEqn8SRa9OPxzjV

Score

N/A

Malware Config

Signatures

Files

6a206f0f318d416cbbe3f482a449d19cc5b1cb34ccfa8ebf6f862da9b37adf9f
.dll windows x86

d1db002f24a01a56ae71d232463594f5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

MmMapViewOfSection
MmGetPhysicalMemoryRanges
CcPinRead
_wcsupr
wcscmp
KeReadStateQueue
IoOpenDeviceRegistryKey
PsSetLoadImageNotifyRoutine
RtlSetOwnerSecurityDescriptor
RtlFindSetBits
RtlGetNextRange
ZwCreateEvent
RtlSetBits

hal

WRITE_PORT_BUFFER_UCHAR
KeQueryPerformanceCounter
HalClearSoftwareInterrupt
KeAcquireQueuedSpinLockRaiseToSynch
HalSetBusData
IoReadPartitionTable
HalGetAdapter
HalStartNextProcessor
KeReleaseSpinLock
HalSetEnvironmentVariable
HalSetBusDataByOffset
HalSetDisplayParameters
KeFlushWriteBuffer

Sections

CODE
Size: 3KB - Virtual size: 81KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 67KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 762B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 728B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 88B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy