3bf379ee46552ea55c9bef0b39a762dd03126f06c407a3d96c198046c0ed2b2e | Triage

Submit
Reports

Overview

overview

3

Static

static

3bf379ee46...2e.dll

windows7-x64

1

3bf379ee46...2e.dll

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

3bf379ee46552ea55c9bef0b39a762dd03126f06c407a3d96c198046c0ed2b2e.dll

Resource

win7-20221111-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

3bf379ee46552ea55c9bef0b39a762dd03126f06c407a3d96c198046c0ed2b2e.dll

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

3bf379ee46552ea55c9bef0b39a762dd03126f06c407a3d96c198046c0ed2b2e
Size

65KB
MD5

cc4df5e08d6e2f7cb13b2522116b0941
SHA1

8e42f30cd2de3cba18dc32c44605dcec052d777f
SHA256

3bf379ee46552ea55c9bef0b39a762dd03126f06c407a3d96c198046c0ed2b2e
SHA512

b25f67e25857f76687722075eec8a07aa6fa5fda68f94d200c345645ca777b6a85a38184584e3877d3f69e8c88dfa7920235c3cc89436f004da9cf2b0fcb71ee
SSDEEP

1536:ZjsYRnMyLIuYB5qIBnrWWdkXd+9+PR3mZSt99Z6rXuxVc:ag53Yjq4rD6mJFWV

Score

N/A

Malware Config

Signatures

Files

3bf379ee46552ea55c9bef0b39a762dd03126f06c407a3d96c198046c0ed2b2e
.dll windows x64

1787a822ec1c7cca8edf0f5049e9c7b6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED

Imports

ntdll

NtSetDefaultLocale
NtQuerySection

kernel32

VirtualAlloc
GlobalUnlock
HeapCreate
lstrcmpW
GetFullPathNameA
VirtualFree
EnterCriticalSection
GetProcessHeaps
RaiseException
RtlUnwind
HeapSize
QueryPerformanceCounter
GlobalAlloc
MoveFileExA

Exports

Exports

CreateProcessNotifm
SetIndexRange
GetRecordPosition
IndexRecordCount
PrepareUpdate
GetLogInfoInstance
SetSessionContext
AttachDatabase2

Sections

.text
Size: 54KB - Virtual size: 54KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy