ad961d6a0e25c8f161602903f92722fd4055815b60cab5ba26921bc1d8e724c3 | Triage

Submit
Reports

Overview

overview

1

Static

static

ad961d6a0e...c3.dll

windows7-x64

1

ad961d6a0e...c3.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

ad961d6a0e25c8f161602903f92722fd4055815b60cab5ba26921bc1d8e724c3.dll

Resource

win7-20221111-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

ad961d6a0e25c8f161602903f92722fd4055815b60cab5ba26921bc1d8e724c3.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

4 signatures

150 seconds

General

Target

ad961d6a0e25c8f161602903f92722fd4055815b60cab5ba26921bc1d8e724c3
Size

21KB
MD5

a6c22d6e97271684a83f953811cdef6e
SHA1

3592d39eb316ccbd8fc16d1d2eeb9a2667ff071d
SHA256

ad961d6a0e25c8f161602903f92722fd4055815b60cab5ba26921bc1d8e724c3
SHA512

e62ea9543f852e5825bd280fbb340e136fbf0113e60b80cc83bbe948825c57d7ab5088283052414f23bfacb4caa413103a70a7a1f6593e65b138a4439a70201e
SSDEEP

192:QJkFJEmwh/Us8EQYUTmXD2McPcKPgSmk5NR0oJMA0lIanKbug4mMpHk0VS4gp8dY:QaUmIZ2y2bZjNR6P3mMTZgp8dY40iSv

Score

N/A

Malware Config

Signatures

Files

ad961d6a0e25c8f161602903f92722fd4055815b60cab5ba26921bc1d8e724c3
.dll windows x86

ef7599be3f89656816c1ad611fd01449

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

WSAStartup
WSACleanup
recv
closesocket
send
gethostbyname
htons
socket
connect

kernel32

FindFirstFileA
OpenEventA
SetEvent
VirtualQuery
GlobalFree
lstrcpyA
GlobalAlloc
lstrlenA
lstrcatA
lstrcmpA
DeleteFileA
GetTempFileNameA
GetTempPathA
WinExec
GetModuleFileNameA
CloseHandle
WriteFile
CreateFileA
CreateProcessA
GetLastError
FileTimeToSystemTime
FindClose
RtlUnwind
GetSystemTime
GetSystemDirectoryA
GetComputerNameA
GetLocaleInfoA
Sleep
GetTickCount
CreateMutexA
GetWindowsDirectoryA
lstrcmpiA
lstrcpynA
ExitProcess
CreateThread

user32

CallNextHookEx
SetWindowsHookExA
SendMessageA
CharLowerA
wsprintfA

advapi32

RegSetValueExA
RegCreateKeyA
RegQueryValueExA
RegCloseKey

Exports

Exports

Activate

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 648B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy