krnl
Static task
static1
Behavioral task
behavioral1
Sample
df29fb4865fc042953b227f547287d058d74aab102c782b41e0687430febb610.dll
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
df29fb4865fc042953b227f547287d058d74aab102c782b41e0687430febb610.dll
Resource
win10v2004-20220901-en
General
-
Target
df29fb4865fc042953b227f547287d058d74aab102c782b41e0687430febb610
-
Size
3KB
-
MD5
997a99312fa54ed5a05bd163d0b2e000
-
SHA1
5583c681cbe2dea184fe90f2c0b7331b1b895116
-
SHA256
df29fb4865fc042953b227f547287d058d74aab102c782b41e0687430febb610
-
SHA512
b08ea8fe5dbdebe55bf8c19c63bbc63f577bbfbbb45f1c6ba798bcea6c66dce0a099c4e14769383889b6fe90737d572810b4de9c1d81dd238529a7e072501433
Malware Config
Signatures
Files
-
df29fb4865fc042953b227f547287d058d74aab102c782b41e0687430febb610.dll windows x86
b1739664e08d6f9c7ad5fbd4058e1368
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
CreateFileW
VirtualAlloc
SetEnvironmentVariableA
ReadFile
shell32
ShellExecuteA
ShellExecuteW
msvcrt
free
_initterm
malloc
_adjust_fdiv
Exports
Exports
Sections
.text Size: 1024B - Virtual size: 576B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 512B - Virtual size: 497B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 576B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 512B - Virtual size: 136B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ