161dd0ecfaa8c84385a49c710f58533ed23e28be90e043ce6624dd5009c567f9 | Triage

Submit
Reports

Overview

overview

9

Static

static

161dd0ecfa...f9.dll

windows7-x64

9

161dd0ecfa...f9.dll

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

161dd0ecfaa8c84385a49c710f58533ed23e28be90e043ce6624dd5009c567f9.dll

Resource

win7-20220812-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

161dd0ecfaa8c84385a49c710f58533ed23e28be90e043ce6624dd5009c567f9.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

5 signatures

150 seconds

General

Target

161dd0ecfaa8c84385a49c710f58533ed23e28be90e043ce6624dd5009c567f9
Size

729KB
MD5

3b53f65a07eb2e0425f1a2032d797e20
SHA1

03ee41831a84013d176fa7f8e7beeb41c3f86247
SHA256

161dd0ecfaa8c84385a49c710f58533ed23e28be90e043ce6624dd5009c567f9
SHA512

612beb0f36ea04379c1d69f1e37251879c12dafbd4f4adc1f08f283f228790b571970ec43dab24cad238012ab9d69dc49830673d73585f39f726cce60efba435
SSDEEP

12288:8tHWGzGzhH1Rc4ZfEkMlhwZ9xe5++X7Ix9WAhH7B3wl8ZLhvF8mCqUsnIGvQPwlL:5XRcPkMT4e5TWhb+AdimJr9

Score

N/A

Malware Config

Signatures

Files

161dd0ecfaa8c84385a49c710f58533ed23e28be90e043ce6624dd5009c567f9
.dll regsvr32 windows x86

baa93d47220682c04d92f7797d9224ce

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Exports

Exports

DllCanUnloadNow
DllGetClassObject
Doknocp
DllMain
DllRegisterServer
DllUnregisterServer
ServiceMain

Sections

Size: 90KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 940B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 796KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ewxvmcsq
Size: 631KB - Virtual size: 632KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

dqwjkfav
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy