df6c396ea5f5eb5fd6cfd61c1b0c1c82a0428c6de998fb778058b4b4d232fefd | Triage

Submit
Reports

Overview

overview

1

Static

static

df6c396ea5...fd.dll

windows7-x64

1

df6c396ea5...fd.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

df6c396ea5f5eb5fd6cfd61c1b0c1c82a0428c6de998fb778058b4b4d232fefd.dll

Resource

win7-20221111-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

df6c396ea5f5eb5fd6cfd61c1b0c1c82a0428c6de998fb778058b4b4d232fefd.dll

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

df6c396ea5f5eb5fd6cfd61c1b0c1c82a0428c6de998fb778058b4b4d232fefd
Size

10KB
MD5

e93c150f45d69f27e471dcd165010d00
SHA1

562fef41bcfdb0a93edcb52293dfb18a6d9e0b3c
SHA256

df6c396ea5f5eb5fd6cfd61c1b0c1c82a0428c6de998fb778058b4b4d232fefd
SHA512

69ae01f8a954373187e8767f1ab0c63071bbeefbceabb2875a6f871b8277726d8ab06dde83422122f585fefdd888fc515ef197929230bf09291483f455fb1c82
SSDEEP

192:sLwLBXK0lBG+ow+vgzqc1TW4o/MAGn7u8:E24+odgW6oUAt8

Score

N/A

Malware Config

Signatures

Files

df6c396ea5f5eb5fd6cfd61c1b0c1c82a0428c6de998fb778058b4b4d232fefd
.dll windows x86

4dc5f993c131f76b7b6c10ef714b0cbc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTempPathA
GetFileSize
ReadFile
VirtualFree
GetTempPathW
TerminateProcess
Sleep
GetPrivateProfileStringA
GetSystemDirectoryA
lstrcatA
CloseHandle
CreateFileA
lstrcpyA
VirtualAlloc
CreateThread
VirtualProtect
GetCurrentDirectoryA

user32

wsprintfW
wsprintfA
IsRectEmpty

gdi32

CreateCompatibleDC
CreateDCA
GetDeviceCaps
CreateCompatibleBitmap
SelectObject
BitBlt
DeleteDC

gdiplus

GdipCreateBitmapFromHBITMAP
GdipGetImageEncoders
GdipDisposeImage
GdiplusStartup
GdipSaveImageToFile
GdipGetImageEncodersSize
GdiplusShutdown

ws2_32

connect
closesocket
htons
recv
send
inet_addr
socket
gethostbyname
WSAStartup

msvcrt

memset
malloc
free
atoi
memcpy
strstr

wininet

InternetOpenUrlA
InternetReadFile
InternetCloseHandle
InternetOpenA

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy