ca92ed64d56aab48a9a5b25299399514b7c89a49b742896ea3c267528fcf3484 | Triage

Submit
Reports

Overview

overview

1

Static

static

ca92ed64d5...84.dll

windows7-x64

1

ca92ed64d5...84.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

ca92ed64d56aab48a9a5b25299399514b7c89a49b742896ea3c267528fcf3484.dll

Resource

win7-20221111-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

ca92ed64d56aab48a9a5b25299399514b7c89a49b742896ea3c267528fcf3484.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

ca92ed64d56aab48a9a5b25299399514b7c89a49b742896ea3c267528fcf3484
Size

18KB
MD5

954c689a364e4812221a2e8886699eaf
SHA1

3216ec59da03dc41d2039b06efea96a919686833
SHA256

ca92ed64d56aab48a9a5b25299399514b7c89a49b742896ea3c267528fcf3484
SHA512

282a2c470b905ff51bf76b60adcf6b1f26700f2936988e1741e467f6bc38cf313c76f6c5acebe129910e6b41c5577476108038c8bfc7f108015204368c7b1587
SSDEEP

384:yfBYkNImaW+EZqiFZfrR/jHVeeLfgPqc+urDZRQcNtFOAn:efNJYOfl/zV7kCBuff3n

Score

N/A

Malware Config

Signatures

Files

ca92ed64d56aab48a9a5b25299399514b7c89a49b742896ea3c267528fcf3484
.dll windows x86

3b8956c4540460cd7cc90d54674372b4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLocalTime
GetProcAddress
LoadLibraryA
GetLastError
TerminateThread
SetThreadPriority
CreateThread
GetModuleFileNameA
GetTempPathA
GetDriveTypeW
GetCurrentProcessId
GetComputerNameA
GetACP
DeleteFileA
GetSystemDirectoryA
VirtualAlloc
VirtualFree
Sleep
CreateFileA
WriteFile
CloseHandle
DisableThreadLibraryCalls
CreateProcessA

wininet

InternetCloseHandle
InternetOpenUrlA
InternetOpenA
InternetReadFile
HttpQueryInfoA

advapi32

CloseServiceHandle
OpenServiceA
DeleteService
OpenSCManagerA
ControlService

msvcrt

sprintf
strrchr
_except_handler3

Exports

Exports

DriverProc
modMessage
modmCallback

Sections

YJu
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 322B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy