5a4cd070275fddec93314e276a42febd9fd915006cfb3d10224a0edfc81fa0ef | Triage

Submit
Reports

Overview

overview

3

Static

static

5a4cd07027...ef.dll

windows7-x64

3

5a4cd07027...ef.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

5a4cd070275fddec93314e276a42febd9fd915006cfb3d10224a0edfc81fa0ef.dll

Resource

win7-20220812-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

5a4cd070275fddec93314e276a42febd9fd915006cfb3d10224a0edfc81fa0ef.dll

Resource

win10v2004-20221111-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

5a4cd070275fddec93314e276a42febd9fd915006cfb3d10224a0edfc81fa0ef
Size

163KB
MD5

8c611f24cc34753b79428c2c7ffba0a2
SHA1

014439d886df70994ab163c786d01bd0d9684785
SHA256

5a4cd070275fddec93314e276a42febd9fd915006cfb3d10224a0edfc81fa0ef
SHA512

fc20dd82b8bbe194040b67ecfbcc7decc4345472b7dac8941c754f9ef21252606b1fad6439a2fff86c2c1893538ff62dc2210b3e3c62b240228b8199428a926f
SSDEEP

3072:nMjMB5R140OCNmhmxoz56xry12mPbcQyrnSCYcgkkOG9:xSLUu5Gu4mPbcQyDSZcgO

Score

N/A

Malware Config

Signatures

Files

5a4cd070275fddec93314e276a42febd9fd915006cfb3d10224a0edfc81fa0ef
.dll windows x86

768ba8fb3680dc23057b742712900845

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxW
IsWindow

shell32

SHGetSpecialFolderLocation
SHCreateDirectoryExW
CommandLineToArgvW

kernel32

ExitProcess
FindFirstFileW
FindNextFileW
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetFullPathNameW
GetModuleHandleA
GetProcAddress
SetUnhandledExceptionFilter
Sleep
TerminateProcess
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
VirtualProtect
lstrlenW
InterlockedExchange

msvcrt

_cexit
_controlfp
_exit
_initterm
_ismbblead
_wcsdup
_wcslwr
exit
free
memset
printf
wcsstr
wprintf
_amsg_exit
__setusermatherr
__set_app_type
__p__fmode
__p__commode
_XcptFilter
__getmainargs

gdi32

PolyDraw
ArcTo

advapi32

RegQueryValueExW
RegOpenKeyExW
RegCloseKey

Exports

Exports

CloseDatabase
GotoBookmark
MawDeviceCallback
PszMonthFromIndex
SetFontOnRichEd
Term

Sections

.text
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 87KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 508B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy