ea5bea35948f76f7efe00f1d899fe2f681a731034386f21f0047042c72562a6c | Triage

Submit
Reports

Overview

overview

3

Static

static

ea5bea3594...6c.dll

windows7-x64

3

ea5bea3594...6c.dll

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

ea5bea35948f76f7efe00f1d899fe2f681a731034386f21f0047042c72562a6c.dll

Resource

win7-20221111-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

ea5bea35948f76f7efe00f1d899fe2f681a731034386f21f0047042c72562a6c.dll

Resource

win10v2004-20220901-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

ea5bea35948f76f7efe00f1d899fe2f681a731034386f21f0047042c72562a6c
Size

29KB
MD5

1026afdd79971f43e23c9507a51a5b78
SHA1

c62d0d228a5b9b87fcf67bfadc350dc4b4575dd0
SHA256

ea5bea35948f76f7efe00f1d899fe2f681a731034386f21f0047042c72562a6c
SHA512

6a601641ac7e73cc3632598660b6df2faad5de075fb749bfe60d2908d88609a6d17d06ffa8f920bca976b53214ca45ecc6b703210b5bf480a3a8ab0e2c4aba41
SSDEEP

384:3AUBNoCuWT/Gef7RNzAulkasEej6Rn/NJR5uxy/Hqs91vZIU:QUACfT3dNEbaJeG1JRL1vZI

Score

N/A

Malware Config

Signatures

Files

ea5bea35948f76f7efe00f1d899fe2f681a731034386f21f0047042c72562a6c
.dll windows x86

ebe2f5b76493508039e04bb7371b62bf

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteFile
GetStdHandle
OutputDebugStringA
GetModuleFileNameA
CreateProcessA
FreeConsole
Sleep
SetLastError
GetLastError

advapi32

RegOpenKeyExA
RegQueryValueExA
OpenServiceA
DeleteService
OpenSCManagerA
CreateServiceA
CloseServiceHandle
SetServiceStatus
RegCloseKey
RegCreateKeyA
RegisterServiceCtrlHandlerA
RegSetValueExA

msvcrt

_snprintf
__CxxFrameHandler
_CxxThrowException
wcstombs
strncpy
strncat
strchr
_except_handler3
fclose
_iob
fprintf
_strdate
_strtime
fopen
_vsnprintf
??3@YAXPAX@Z
??1type_info@@UAE@XZ
free
_initterm
malloc
_adjust_fdiv
_stricmp

Exports

Exports

InstallService
RundllInstallA
RundllUninstallA
ServiceMain
UninstallService

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 558B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy