218a565623f502bcf4aa9e2bdc2895d99b1ce3e2c0f1537d5e9a268f2d9792ae | Triage

Submit
Reports

Overview

overview

8

Static

static

218a565623...ae.dll

windows7-x64

8

218a565623...ae.dll

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

218a565623f502bcf4aa9e2bdc2895d99b1ce3e2c0f1537d5e9a268f2d9792ae.dll

Resource

win7-20221111-en

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

218a565623f502bcf4aa9e2bdc2895d99b1ce3e2c0f1537d5e9a268f2d9792ae.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

8 signatures

150 seconds

General

Target

218a565623f502bcf4aa9e2bdc2895d99b1ce3e2c0f1537d5e9a268f2d9792ae
Size

291KB
MD5

aea2f2f6eb95ecbe285ede59853206f0
SHA1

4ec0ae76ea30bdbe51a49fe10c927c2dd23d49aa
SHA256

218a565623f502bcf4aa9e2bdc2895d99b1ce3e2c0f1537d5e9a268f2d9792ae
SHA512

d8e495ac117039fc839623a6f86f57401dd9152f804b45e2ab5ffc46877724a44d4cb7a15de4947d458865f8b23b4771727ba8ecdb0bc5588c6146b468d6fe4a
SSDEEP

6144:c44R4godObSRocNi8NigYlb4tNIvy/X8F6+Odr+ROomFt:c44R8ObQw8jGgSxF6+OdrEOom

Score

N/A

Malware Config

Signatures

Files

218a565623f502bcf4aa9e2bdc2895d99b1ce3e2c0f1537d5e9a268f2d9792ae
.dll windows x86

1fce0f88a970962a8e24f5c40c6afdcf

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

winmm

waveOutUnprepareHeader

ws2_32

getpeername

rasapi32

RasGetConnectStatusA

user32

GetSubMenu

gdi32

RectVisible

winspool.drv

OpenPrinterA

advapi32

RegCloseKey

shell32

ShellExecuteA

ole32

StgOpenStorageOnILockBytes

oleaut32

SysFreeString

comctl32

ord17

oledlg

ord8

wininet

InternetCanonicalizeUrlA

comdlg32

ChooseColorA

Exports

Exports

HookInstall
HookUninstall

Sections

.text
Size: 278KB - Virtual size: 964KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy