9ec7ef020c9ecc6bb013633044297711702cb0f90e477041b53c6c933fbb0cd8 | Triage

Submit
Reports

Overview

overview

1

Static

static

9ec7ef020c...d8.dll

windows7-x64

1

9ec7ef020c...d8.dll

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

9ec7ef020c9ecc6bb013633044297711702cb0f90e477041b53c6c933fbb0cd8.dll

Resource

win7-20221111-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

9ec7ef020c9ecc6bb013633044297711702cb0f90e477041b53c6c933fbb0cd8.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

9ec7ef020c9ecc6bb013633044297711702cb0f90e477041b53c6c933fbb0cd8
Size

18KB
MD5

4a101afbef2155633a5dd142014cbc06
SHA1

4d7c6419da857ee01325fea7f4b2fe4d0254efa4
SHA256

9ec7ef020c9ecc6bb013633044297711702cb0f90e477041b53c6c933fbb0cd8
SHA512

c15db0dfa2c1eec155dd6bcfb51c7890c7b57d32c4fe61553870456d89c9fbfd5c6b765e217507dbef5af5664c868ebc69ff8462e8f5ea2ee1b6ce3f5979f730
SSDEEP

384:Bo/7+C3cvZqiafPR/jHVeeLfgPqc+urDZRQcNtB:B27+C3oYXf5/zV7kCBuff7

Score

N/A

Malware Config

Signatures

Files

9ec7ef020c9ecc6bb013633044297711702cb0f90e477041b53c6c933fbb0cd8
.dll windows x86

f2ee0c01855fd55888fcfd8f5a0b3753

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLocalTime
GetProcAddress
LoadLibraryA
GetLastError
TerminateThread
SetThreadPriority
CreateThread
GetTempPathA
DisableThreadLibraryCalls
ReadFile
DeleteFileA
GetSystemDirectoryA
VirtualAlloc
VirtualFree
Sleep
CreateFileA
WriteFile
CloseHandle
GetModuleFileNameA
CreateProcessA

wininet

InternetOpenA
InternetOpenUrlA
HttpQueryInfoA
InternetReadFile
InternetCloseHandle

advapi32

ControlService
OpenServiceA
DeleteService
OpenSCManagerA
CloseServiceHandle

msvcrt

_except_handler3
memcpy
strlen
sprintf
strcat
strrchr
strcpy
memset

Exports

Exports

DriverProc
modMessage
modmCallback

Sections

hJDiJfH
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 320B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy