1f5e39da5403dde8e5703163318a2e4ac1ef1c588e6d3f92dbab75b169c7a95b | Triage

Submit
Reports

Overview

overview

1

Static

static

1f5e39da54...5b.dll

windows7-x64

1

1f5e39da54...5b.dll

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

1f5e39da5403dde8e5703163318a2e4ac1ef1c588e6d3f92dbab75b169c7a95b.dll

Resource

win7-20221111-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

1f5e39da5403dde8e5703163318a2e4ac1ef1c588e6d3f92dbab75b169c7a95b.dll

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

1f5e39da5403dde8e5703163318a2e4ac1ef1c588e6d3f92dbab75b169c7a95b
Size

31KB
MD5

3bfc5ab253e2eed8f90532d147471b90
SHA1

14800b18a9d3102e276d010818ccaf0b52fd8be4
SHA256

1f5e39da5403dde8e5703163318a2e4ac1ef1c588e6d3f92dbab75b169c7a95b
SHA512

0a19106cc26656b4d409673edc2b8ad32623bc1288ce6f808aca79eda5db147a6c72d12992cd6f7e78d754b4e0a4164e6aa929fc7997f85deb62f6c580fbdff6
SSDEEP

384:C2ZttnhcF2Ruc8G1OggfodvddcTOTJUDTpqZFqI2QIb9limPg:DtJwnIswv3cTOTWDTAZFqI2QMHg

Score

N/A

Malware Config

Signatures

Files

1f5e39da5403dde8e5703163318a2e4ac1ef1c588e6d3f92dbab75b169c7a95b
.dll windows x86

bb8e31da16da588ae0939215204a5998

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

ntohs

msvcrt

malloc
_adjust_fdiv
_initterm
_strupr
free
strrchr
memcmp
atoi
memcpy
strchr
strcmp
strstr
??2@YAPAXI@Z
??3@YAXPAX@Z
fopen
fread
fclose
fwrite
time
memset
_strlwr
_itoa

kernel32

GetCommandLineA
Sleep
GetModuleHandleA
CopyFileA
GetModuleFileNameA
LoadLibraryA
GetProcAddress
GetTempPathA
CreateThread
lstrlenA
SetEvent
WaitForSingleObject
lstrcpyA
ReadProcessMemory
lstrcatA
GetCurrentProcessId
GetCurrentProcess
VirtualProtectEx
CreateEventA

Sections

.text
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1020B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy