d31fd67d00477b4288c71861f763b1adb60b5849528bb92f8435357ad578a7c2 | Triage

Submit
Reports

Overview

overview

1

Static

static

d31fd67d00...c2.dll

windows7-x64

1

d31fd67d00...c2.dll

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

d31fd67d00477b4288c71861f763b1adb60b5849528bb92f8435357ad578a7c2.dll

Resource

win7-20221111-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

d31fd67d00477b4288c71861f763b1adb60b5849528bb92f8435357ad578a7c2.dll

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

d31fd67d00477b4288c71861f763b1adb60b5849528bb92f8435357ad578a7c2
Size

18KB
MD5

9a743f482a5e3865d5bf6086f0ffd380
SHA1

2c2a0d8b75f37ba1c416ab3fe25794ac2419635b
SHA256

d31fd67d00477b4288c71861f763b1adb60b5849528bb92f8435357ad578a7c2
SHA512

9440e0138d921bb0c8af552793e21c9218006b9d7e09cda0884d32faa35b58a827dfcb6ac832c8136a51c2f4951866b8a1a5052f7aec6eb65d7935fdd3fc64d5
SSDEEP

384:MaC64Zz0skzUmwCrzWIAmUBCiY6IH6zrVRniJwB4ox+dmo0viBv:M3Z0snmwCWIAgiY6IHGrvi2yoxwmdvEv

Score

N/A

Malware Config

Signatures

Files

d31fd67d00477b4288c71861f763b1adb60b5849528bb92f8435357ad578a7c2
.dll windows x86

5b0a60198ac7e5dfcf0a43d5ba1f1774

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
GetLastError
CreateFileA
CreateProcessA
WriteFile
GetTempPathA
GetLocalTime
GetCPInfoExA
MultiByteToWideChar
TerminateThread
SetThreadPriority
CreateThread
GetModuleFileNameA
DisableThreadLibraryCalls
VirtualAlloc
VirtualFree
GetSystemDirectoryA
DeleteFileA
Sleep
LoadLibraryA
GetACP
GetProcAddress

user32

CreateWindowExW

wininet

InternetOpenA
InternetReadFile
InternetCloseHandle
HttpQueryInfoA
InternetOpenUrlA

advapi32

ControlService
OpenServiceA
DeleteService
OpenSCManagerA
CloseServiceHandle

shell32

ShellExecuteExW

msvcrt

memset
_except_handler3
strcpy
sprintf
strrchr
strlen
strcat
memcpy

Exports

Exports

DriverProc
modMessage
modmCallback

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 322B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy