3b689c7bf1e2581ceb399c82c99f89bc7d0cf6347becfa2f25b70efd7365f371 | Triage

Submit
Reports

Overview

overview

3

Static

static

3b689c7bf1...71.dll

windows7-x64

1

3b689c7bf1...71.dll

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

3b689c7bf1e2581ceb399c82c99f89bc7d0cf6347becfa2f25b70efd7365f371.dll

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

3b689c7bf1e2581ceb399c82c99f89bc7d0cf6347becfa2f25b70efd7365f371.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

3b689c7bf1e2581ceb399c82c99f89bc7d0cf6347becfa2f25b70efd7365f371
Size

32KB
MD5

6e621ad725192cf15445f944c2baf464
SHA1

4fb2a8ce0318ea6894a92f5ed610d763e7a6aa39
SHA256

3b689c7bf1e2581ceb399c82c99f89bc7d0cf6347becfa2f25b70efd7365f371
SHA512

4198aa8c6df9c8e81cba0bc4b8b97d34647cee6b08fa67f79ecaeb5ef71aa721580422d268644acbdbd706dcb428f89f7deddc5788887f197edb72826c21ca92
SSDEEP

384:qS5jeeGLwKTFKfiTlk2loBkmlTkFumy/pyreku+oIo9RdiG4Izah:vVKTofSm2lospwyrekWIo9Za

Score

N/A

Malware Config

Signatures

Files

3b689c7bf1e2581ceb399c82c99f89bc7d0cf6347becfa2f25b70efd7365f371
.dll windows x86

08b145440008aa12fe64b9e146e49c97

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetEnvironmentStringsW
GetPrivateProfileStringA
Sleep
HeapCreate
VirtualFree
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
TlsGetValue
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
HeapDestroy
VirtualAlloc
HeapFree
WriteFile
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
HeapAlloc
GetCPInfo
GetACP
GetOEMCP
LCMapStringW
HeapReAlloc
GetProcAddress
LoadLibraryA
MultiByteToWideChar
LCMapStringA
GetStringTypeA
GetStringTypeW
RtlUnwind

ws2_32

htons
socket
closesocket
connect
recvfrom
inet_addr

Exports

Exports

GetPluginInfo
PluginFunc

Sections

.text
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy