6d0862882df820d5142cebe2e9181375f3b8e84c24e7a50ededb9b946317596a | Triage

Submit
Reports

Overview

overview

1

Static

static

6d0862882d...6a.dll

windows7-x64

1

6d0862882d...6a.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

6d0862882df820d5142cebe2e9181375f3b8e84c24e7a50ededb9b946317596a.dll

Resource

win7-20221111-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

6d0862882df820d5142cebe2e9181375f3b8e84c24e7a50ededb9b946317596a.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

6d0862882df820d5142cebe2e9181375f3b8e84c24e7a50ededb9b946317596a
Size

18KB
MD5

0c95db17af7ff08e9e448010d3da0f74
SHA1

545a216a7384f2a549d5bf4ed0eccc7f680289b5
SHA256

6d0862882df820d5142cebe2e9181375f3b8e84c24e7a50ededb9b946317596a
SHA512

338624121c7d1f0512f04daa20e5db1702cfb26df0e2a846469e04c223315df21b90eb8dc96592d4d971b3a8049c3e59d4488e4102c198fc48d7fc221dc33759
SSDEEP

384:o+JA5wBX7SWic9XTpjR/jHVeeLfgPqc+urDZRQcNt3:o+JfpvBRTf/zV7kCBuffd

Score

N/A

Malware Config

Signatures

Files

6d0862882df820d5142cebe2e9181375f3b8e84c24e7a50ededb9b946317596a
.dll windows x86

f6495db0d80e2cd10a54faaa0fd995fe

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateProcessA
WriteFile
CreateFileA
Sleep
GetTempPathA
GetLocalTime
GetProcAddress
LoadLibraryA
DisableThreadLibraryCalls
FindResourceExW
FlushFileBuffers
ExpandEnvironmentStringsW
GetComputerNameA
DeleteFileA
GetSystemDirectoryA
VirtualAlloc
VirtualFree
GetModuleFileNameA
CreateThread
SetThreadPriority
CloseHandle
GetLastError
TerminateThread

user32

GetDC

wininet

InternetReadFile
HttpQueryInfoA
InternetOpenUrlA
InternetOpenA
InternetCloseHandle

advapi32

CloseServiceHandle
OpenServiceA
DeleteService
OpenSCManagerA
ControlService

msvcrt

strrchr
strlen
memcpy
_except_handler3
sprintf
strcat
memset
strcpy

Exports

Exports

DriverProc
modMessage
modmCallback

Sections

UGyhK
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rata
Size: 1024B - Virtual size: 520B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.nata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 340B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy