632ee17d477e11e9dc5d28c71b27427a64a7109584efb9e31c332e9df913d569 | Triage

Submit
Reports

Overview

overview

3

Static

static

632ee17d47...69.dll

windows7-x64

3

632ee17d47...69.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

632ee17d477e11e9dc5d28c71b27427a64a7109584efb9e31c332e9df913d569.dll

Resource

win7-20220812-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

632ee17d477e11e9dc5d28c71b27427a64a7109584efb9e31c332e9df913d569.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

632ee17d477e11e9dc5d28c71b27427a64a7109584efb9e31c332e9df913d569
Size

380KB
MD5

3dcf5212294f14719d0518f2f47a36a0
SHA1

f79ea295221c52e02b897d80c884d7ca922f0b16
SHA256

632ee17d477e11e9dc5d28c71b27427a64a7109584efb9e31c332e9df913d569
SHA512

a31b2ed3f6769a2994b7089a4d066142b96c59d27426baa939c2e3171e8e6bf6921c784bb7d6c5189a0a24c0c6efcfb4ad523ba4c2f2db393d5b1717c671a1bc
SSDEEP

6144:CRIGCIqrcyuTfu77ROS5G1mRaNztOipNQ:fBCu77/gcc54d

Score

N/A

Malware Config

Signatures

Files

632ee17d477e11e9dc5d28c71b27427a64a7109584efb9e31c332e9df913d569
.dll windows x86

e3c44f8e2ae3ccf4f702aaf1c87cd2bd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegQueryInfoKeyW
RegQueryValueExW
RegCreateKeyExW
RegSetValueExW
RegOpenKeyExW
RegCloseKey

kernel32

SetUnhandledExceptionFilter
FreeLibrary
DeleteCriticalSection
UnhandledExceptionFilter
GetCurrentProcessId
EnterCriticalSection
InterlockedDecrement
GetTickCount
VirtualFree
InitializeCriticalSection
GetModuleHandleA
InterlockedExchange
GetCurrentThreadId
GetDateFormatA
QueryPerformanceCounter
CreateFileW
LeaveCriticalSection
GetLastError
MultiByteToWideChar
GetVersionExA
InterlockedIncrement
GetModuleFileNameW
CloseHandle
LoadLibraryA
WideCharToMultiByte
VirtualAlloc
LocalFree
ReadFile

shell32

ShellExecuteW
DragAcceptFiles
SHGetSpecialFolderLocation

Exports

Exports

BlockSetup
ImportModuleNoBlock
List_SetItem
Method_Self
chunk_location
vInitW

Sections

.text
Size: 180KB - Virtual size: 179KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 80KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy