cada5f8c5a5e4fe47391b90a0027011e693d6a27615ea135ad37d3b65e7dad80 | Triage

Submit
Reports

Overview

overview

1

Static

static

cada5f8c5a...80.dll

windows7-x64

1

cada5f8c5a...80.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

cada5f8c5a5e4fe47391b90a0027011e693d6a27615ea135ad37d3b65e7dad80.dll

Resource

win7-20220812-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

cada5f8c5a5e4fe47391b90a0027011e693d6a27615ea135ad37d3b65e7dad80.dll

Resource

win10v2004-20221111-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

cada5f8c5a5e4fe47391b90a0027011e693d6a27615ea135ad37d3b65e7dad80
Size

39KB
MD5

f8e92d13aea9f03ab39d547754cdde99
SHA1

88f6013747a800a24ada5f10d3e67d6d6489a834
SHA256

cada5f8c5a5e4fe47391b90a0027011e693d6a27615ea135ad37d3b65e7dad80
SHA512

16c2f85097976001e2bd232b19c5657f04a79ae7a2d63ff736554ffcd518f609471e61c0ea823cd2d4fee26ce2df8e5c83f8b0b09b081c3b941b987176e9b0f0
SSDEEP

768:9FH6JTnTCaxijdo9KwjX5kdw8ukfaTXKc5GtiZ7Q:fH6JTnGqEod5EWkhcUgZ

Score

N/A

Malware Config

Signatures

Files

cada5f8c5a5e4fe47391b90a0027011e693d6a27615ea135ad37d3b65e7dad80
.dll windows x86

8b10d4c956986eff8a7e85dc53fedf01

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
VirtualAlloc
VirtualFree
MultiByteToWideChar
TlsAlloc
GetVersionExA
HeapAlloc
HeapCreate
GetStringTypeW
GetStringTypeA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsFree
TlsGetValue
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
HeapDestroy
HeapFree
WriteFile
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetCPInfo
GetACP
GetOEMCP
HeapReAlloc
LoadLibraryA
LCMapStringA
LCMapStringW
RtlUnwind

Exports

Exports

GetCLSID
TPointXY

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy