Static task
static1
Behavioral task
behavioral1
Sample
d0f1ad711d57d9a49e95f5509d15ac13307191d97d870741f18765eed60a74db.dll
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
d0f1ad711d57d9a49e95f5509d15ac13307191d97d870741f18765eed60a74db.dll
Resource
win10v2004-20221111-en
General
-
Target
d0f1ad711d57d9a49e95f5509d15ac13307191d97d870741f18765eed60a74db
-
Size
125KB
-
MD5
4ce861a971384c94b8e7d7ae99729580
-
SHA1
73b68da4b43c0ea84c1f0874a9a4e46cd6dda516
-
SHA256
d0f1ad711d57d9a49e95f5509d15ac13307191d97d870741f18765eed60a74db
-
SHA512
c30f70dc943495267700a7ddea848592571ef4c08a94c9e6f9c3defbba4915cbeeff93619a9aa5b07c8caa217e50eed0af5e54276fea2138c751a6ddcfb75f76
-
SSDEEP
1536:/9tMLS0euadimxbTd2arU31wrkcU7ImOoYtuJedympc/SaAhty0Uhs5gfoILD:6xS/d2MU31w4c4OoYtu0dtpGwtv59I
Malware Config
Signatures
Files
-
d0f1ad711d57d9a49e95f5509d15ac13307191d97d870741f18765eed60a74db.dll windows x86
647d7f91264beea88a218a8278d9a139
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
CreateFileA
GetCurrentThread
GetProcessHeap
VirtualAlloc
GetStartupInfoW
user32
LoadCursorW
LoadCursorA
LoadIconA
gdi32
GetStockObject
advapi32
RegOpenKeyExW
shell32
ShellExecuteW
msvcrt
_except_handler3
Sections
.55529 Size: 1024B - Virtual size: 1004B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.55519 Size: 512B - Virtual size: 4B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.55518 Size: 512B - Virtual size: 4B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.55517 Size: 512B - Virtual size: 4B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.55514 Size: 512B - Virtual size: 4B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.55513 Size: 21KB - Virtual size: 20KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.55512 Size: 80KB - Virtual size: 79KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.text Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1024B - Virtual size: 554B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 436B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 15KB - Virtual size: 14KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 1024B - Virtual size: 24KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ