06891ae075f4a4c995747b46f5b9818a481994a63e1b67db5384b5abe6a97540 | Triage

Submit
Reports

Overview

overview

1

Static

static

06891ae075...40.dll

windows7-x64

1

06891ae075...40.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

06891ae075f4a4c995747b46f5b9818a481994a63e1b67db5384b5abe6a97540.dll

Resource

win7-20221111-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

06891ae075f4a4c995747b46f5b9818a481994a63e1b67db5384b5abe6a97540.dll

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

06891ae075f4a4c995747b46f5b9818a481994a63e1b67db5384b5abe6a97540
Size

18KB
MD5

5f5bc3547d47249e99805ac7b7935020
SHA1

7d1c809ee2dd15330c3075669cf94ebb2fe8754f
SHA256

06891ae075f4a4c995747b46f5b9818a481994a63e1b67db5384b5abe6a97540
SHA512

a42d1eb871c6fcbf2e64dea3d7a6fbead9edd5a2952a77336df802520b65789d990aa43dde55fd2749a579d907ced9800d221cbc212e6597b2a17913081ae5ac
SSDEEP

384:yrDKFb+tnPWjtLf8zv7A/wBQvJZgo0vivV+Mf5VJ:iqatnPWjtLf5YOvHgdv+VTfx

Score

N/A

Malware Config

Signatures

Files

06891ae075f4a4c995747b46f5b9818a481994a63e1b67db5384b5abe6a97540
.dll windows x86

2d76cfd295e36a8824d145dfa7691de8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateProcessA
WriteFile
GetTempPathA
GetLocalTime
GetCPInfoExA
GetACP
CreateFileA
SetThreadPriority
CreateThread
GetModuleFileNameA
DisableThreadLibraryCalls
VirtualAlloc
VirtualFree
GetLastError
CloseHandle
MultiByteToWideChar
GetSystemDirectoryA
DeleteFileA
Sleep
LoadLibraryA
TerminateThread
GetProcAddress

user32

GetCursor
GetDC

wininet

InternetReadFile
InternetOpenA
HttpQueryInfoA
InternetOpenUrlA
InternetCloseHandle

gdi32

GetPixel
GetBkMode

advapi32

OpenSCManagerA
DeleteService
CloseServiceHandle
ControlService
OpenServiceA

shell32

ShellExecuteExA

msvcrt

_except_handler3
memset
strcat
strcpy
sprintf
strrchr
strlen
memcpy

Exports

Exports

DriverProc
modMessage
modmCallback

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 334B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy