3b2a79a7151660b84b30765b99b8cc01544f8ac830c58c658fe4d423b750d77a | Triage

Submit
Reports

Overview

overview

1

Static

static

3b2a79a715...7a.dll

windows7-x64

1

3b2a79a715...7a.dll

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

3b2a79a7151660b84b30765b99b8cc01544f8ac830c58c658fe4d423b750d77a.dll

Resource

win7-20221111-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

3b2a79a7151660b84b30765b99b8cc01544f8ac830c58c658fe4d423b750d77a.dll

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

3b2a79a7151660b84b30765b99b8cc01544f8ac830c58c658fe4d423b750d77a
Size

18KB
MD5

b6b02a99302efc7f4fe34646736c8880
SHA1

2081ad0bced97ddb8cf13256cede3b4efd4456e8
SHA256

3b2a79a7151660b84b30765b99b8cc01544f8ac830c58c658fe4d423b750d77a
SHA512

4f4b25030983fccbb61119a6b83a9c1041589f4700aded7236af82ab42cb194fa3d9b1c3c9979b78915c62ebe19b7a86d8da162e96152d332150deb31c289f0d
SSDEEP

384:wCiGC+GoC37M6F0yWqYkD68Pls+5CSrmL60viKSP:PiO27MUWXkvls+55rmLXvnc

Score

N/A

Malware Config

Signatures

Files

3b2a79a7151660b84b30765b99b8cc01544f8ac830c58c658fe4d423b750d77a
.dll windows x86

db6fe4ae442309343a0709aabfb285c0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteFile
GetTempPathA
GetLocalTime
GetCPInfoExA
GetACP
TerminateThread
CreateProcessA
CreateThread
GetModuleFileNameA
DisableThreadLibraryCalls
VirtualAlloc
VirtualFree
CreateFileA
GetLastError
CloseHandle
GetSystemDirectoryA
DeleteFileA
Sleep
LoadLibraryA
SetThreadPriority
GetProcAddress

wininet

InternetOpenA
InternetOpenUrlA
InternetReadFile
InternetCloseHandle
HttpQueryInfoA

gdi32

GetBkMode
GetPixel

advapi32

OpenSCManagerA
DeleteService
CloseServiceHandle
ControlService
OpenServiceA

shell32

ShellExecuteExA

msvcrt

sprintf
strrchr
strlen
strcpy
strcat
memset
_except_handler3
memcpy

Exports

Exports

DriverProc
modMessage
modmCallback

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 332B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy