8b51ed6f338709ce4337c482c039f0cde26e639e2fe2ce0bfcf1cfc2074fe05e | Triage

Submit
Reports

Overview

overview

3

Static

static

8b51ed6f33...5e.dll

windows7-x64

1

8b51ed6f33...5e.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

8b51ed6f338709ce4337c482c039f0cde26e639e2fe2ce0bfcf1cfc2074fe05e.dll

Resource

win7-20221111-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

8b51ed6f338709ce4337c482c039f0cde26e639e2fe2ce0bfcf1cfc2074fe05e.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

8b51ed6f338709ce4337c482c039f0cde26e639e2fe2ce0bfcf1cfc2074fe05e
Size

49KB
MD5

cd4147772d00735d386aa41c745ab298
SHA1

5f21b3f0bd6870e812cba6a015178dc52fd0649e
SHA256

8b51ed6f338709ce4337c482c039f0cde26e639e2fe2ce0bfcf1cfc2074fe05e
SHA512

dff18aceacafbb64a72d5cd5f7aa643eb0a69c2a69daca66277280169389d3f5c81197945b4b3f40c8559f4b13d45d46a9284def3049d4ee6742f122fe050fa4
SSDEEP

1536:6ajuMrRIdrL0Em0rbGXSuz6wqs0Rq5vBS8iJWSFu7q:WMVSAD3jORqRCJWau7q

Score

N/A

Malware Config

Signatures

Files

8b51ed6f338709ce4337c482c039f0cde26e639e2fe2ce0bfcf1cfc2074fe05e
.dll windows x86

44ce3e6420bc0f9d260c90fe9ea94c9a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
HeapDestroy
WaitForMultipleObjects
ReadFile
HeapCreate
SetFilePointer
GetLocalTime
MapViewOfFileEx
UnmapViewOfFile
CreateFileA
lstrcmpiA
CreateThread
CreateEventA
WriteFileGather
ResumeThread
SetNamedPipeHandleState
GetFileTime
CreateFileMappingA
HeapFree
CreateNamedPipeA
HeapQueryInformation
SleepEx
VirtualQuery
HeapAlloc

irmox32r

ExtractIconA
wcspbrk
ImmWINNLSGetEnableStatus
towupper
iswctype
_wcslwr
ImmUnregisterWordA
wcsrchr
log
IsNetDrive
CtfImmIsCiceroEnabled
_wcsicmp
isdigit
ImmGetImeInfoEx
ImmLockIMCC
_vsnwprintf
_lfind
ILCreateFromPath
_allshr
DragQueryFile
DllInstall
strcat
_wtoi

Exports

Exports

CreateProcessNotify
isobstrA

Sections

.text
Size: 30KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 16KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy