ad3e34e1eb4d26a953c1a5142c371c96e6385366005985beb4e195593802adb0 | Triage

Submit
Reports

Overview

overview

3

Static

static

ad3e34e1eb...b0.dll

windows7-x64

3

ad3e34e1eb...b0.dll

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

ad3e34e1eb4d26a953c1a5142c371c96e6385366005985beb4e195593802adb0.dll

Resource

win7-20220901-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

ad3e34e1eb4d26a953c1a5142c371c96e6385366005985beb4e195593802adb0.dll

Resource

win10v2004-20220901-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

ad3e34e1eb4d26a953c1a5142c371c96e6385366005985beb4e195593802adb0
Size

10KB
MD5

c25042a9febfbb0663fe4ca237dbc418
SHA1

bcb39041a438a46fa9f17e50c3003bb9c66843fc
SHA256

ad3e34e1eb4d26a953c1a5142c371c96e6385366005985beb4e195593802adb0
SHA512

40eeefc44845d0909481ab0719cb1581a7dd6ed132a117d8810e2c166761572bd680a661cdbaa19c1a0fed249c4611f8692efaa60386845a928570fe15b51d55
SSDEEP

192:XwgEgOzq5zUet98H410rW7Eyo04hNjHtm0qM4qoxoNX65XdfujJ1b:XCE5zUyEN8ehX65N2t1

Score

N/A

Malware Config

Signatures

Files

ad3e34e1eb4d26a953c1a5142c371c96e6385366005985beb4e195593802adb0
.dll windows x86

f2e628c5a49cb637aa26b6840ea41c11

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegisterServiceCtrlHandlerA
SetServiceStatus
CloseServiceHandle
RegOpenKeyExA
ChangeServiceConfig2A
RegCloseKey
RegQueryValueExA
DeleteService
OpenServiceA
OpenSCManagerA

msvcrt

_initterm
malloc
_adjust_fdiv
free
??1type_info@@UAE@XZ
??3@YAXPAX@Z
fopen
fclose
fwrite
atoi
_beginthreadex
_except_handler3
_CxxThrowException
__CxxFrameHandler
strchr
strncat
strncpy
wcstombs
??2@YAPAXI@Z
_stricmp

kernel32

OpenEventA
SetEvent
GetTempPathA
GetSystemDirectoryA
CreateFileA
CloseHandle
FreeLibrary
WaitForSingleObject
GetPrivateProfileStringA
GetWindowsDirectoryA
CreateEventA
LoadLibraryA
GetProcAddress
GetModuleFileNameA
Sleep

Exports

Exports

InstallService
RunInstallA
RundllInstallA
RundllUninstallA
ServiceMain
UninstallService

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 694B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy