b0cbb8a30b3f26194870c95f2cc72605be6e291a017e6bc94626df8800a8ea27 | Triage

Submit
Reports

Overview

overview

1

Static

static

b0cbb8a30b...27.dll

windows7-x64

1

b0cbb8a30b...27.dll

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

b0cbb8a30b3f26194870c95f2cc72605be6e291a017e6bc94626df8800a8ea27.dll

Resource

win7-20220901-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

b0cbb8a30b3f26194870c95f2cc72605be6e291a017e6bc94626df8800a8ea27.dll

Resource

win10v2004-20221111-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

b0cbb8a30b3f26194870c95f2cc72605be6e291a017e6bc94626df8800a8ea27
Size

4KB
MD5

80523e8c5a9731c5067533fd88a7849e
SHA1

d42100e05f80cf9f7577df886d76d7aee4acc524
SHA256

b0cbb8a30b3f26194870c95f2cc72605be6e291a017e6bc94626df8800a8ea27
SHA512

e44c89abc3dc470ae31b5029e758b71ac0eb7ab445706aff9257c71ae34966343b7ff14e6f125044572778cc0a7b3928c659cb981b1192bb52b9ebf54946498e
SSDEEP

48:SQVUdqwNHzpF65IkGSOS7IhM+WbOp666666666ae5BA60NcNGCHgsWJRRjthgAly:RVUkATn65r8z666666666SC7kJDTvQ

Score

N/A

Malware Config

Signatures

Files

b0cbb8a30b3f26194870c95f2cc72605be6e291a017e6bc94626df8800a8ea27
.dll windows x86

95398a8dafef86d002efd8f61866de8a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

imagehlp

ImageDirectoryEntryToData

kernel32

GetProcAddress
GetModuleFileNameA
lstrcmpA
lstrcpyA
lstrlenA
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
GetModuleHandleA
GetCurrentProcessId
GetTickCount
GlobalAlloc
WriteProcessMemory
VirtualProtectEx
GetCurrentProcess
lstrcmpiA
CloseHandle
Module32Next
Module32First
CreateToolhelp32Snapshot
OpenFileMappingA

user32

SetWindowsHookExA

Exports

Exports

HideProcess

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 568B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 444B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy