2f5d28ad144113993d69a9b03e38e9f8bd3143a08ac7e1ffb8de80bb782a7d24 | Triage

Submit
Reports

Overview

overview

1

Static

static

2f5d28ad14...24.dll

windows7-x64

1

2f5d28ad14...24.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

2f5d28ad144113993d69a9b03e38e9f8bd3143a08ac7e1ffb8de80bb782a7d24.dll

Resource

win7-20220901-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

2f5d28ad144113993d69a9b03e38e9f8bd3143a08ac7e1ffb8de80bb782a7d24.dll

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

2f5d28ad144113993d69a9b03e38e9f8bd3143a08ac7e1ffb8de80bb782a7d24
Size

18KB
MD5

bff1fd40ade73ca4502469161a2d2440
SHA1

65308369eb017bea0c9c557d5fdd8f82e2f45d59
SHA256

2f5d28ad144113993d69a9b03e38e9f8bd3143a08ac7e1ffb8de80bb782a7d24
SHA512

2c68e398a338deaf31877c35bd78c80bfb7328358f710d93932e28ee18feb9518b20d9af504750ab92ad20e4e096e68b3371d5acdecfcf19d519f0e22453d053
SSDEEP

384:4rDKFb+tnPWjtLf8zv57/wBQvJZgo0vivV+Mf:kqatnPWjtLfo7YOvHgdv+VTf

Score

N/A

Malware Config

Signatures

Files

2f5d28ad144113993d69a9b03e38e9f8bd3143a08ac7e1ffb8de80bb782a7d24
.dll windows x86

2d76cfd295e36a8824d145dfa7691de8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateProcessA
WriteFile
GetTempPathA
GetLocalTime
GetCPInfoExA
GetACP
CreateFileA
SetThreadPriority
CreateThread
GetModuleFileNameA
DisableThreadLibraryCalls
VirtualAlloc
VirtualFree
GetLastError
CloseHandle
MultiByteToWideChar
GetSystemDirectoryA
DeleteFileA
Sleep
LoadLibraryA
TerminateThread
GetProcAddress

user32

GetCursor
GetDC

wininet

InternetReadFile
InternetOpenA
HttpQueryInfoA
InternetOpenUrlA
InternetCloseHandle

gdi32

GetPixel
GetBkMode

advapi32

OpenSCManagerA
DeleteService
CloseServiceHandle
ControlService
OpenServiceA

shell32

ShellExecuteExA

msvcrt

_except_handler3
memset
strcat
strcpy
sprintf
strrchr
strlen
memcpy

Exports

Exports

DriverProc
modMessage
modmCallback

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 334B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy