c9bfc54fda3a2290e6dbbf1e694858fa7fa5039b64d5df422d6b6f0f41f7e27d | Triage

Submit
Reports

Overview

overview

1

Static

static

c9bfc54fda...7d.dll

windows7-x64

1

c9bfc54fda...7d.dll

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

c9bfc54fda3a2290e6dbbf1e694858fa7fa5039b64d5df422d6b6f0f41f7e27d.dll

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

c9bfc54fda3a2290e6dbbf1e694858fa7fa5039b64d5df422d6b6f0f41f7e27d.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

c9bfc54fda3a2290e6dbbf1e694858fa7fa5039b64d5df422d6b6f0f41f7e27d
Size

18KB
MD5

965f3c33f459c69baefcda38ee1fffef
SHA1

8c867757d73f9e7d32f03c353ae36a2e43cec1f4
SHA256

c9bfc54fda3a2290e6dbbf1e694858fa7fa5039b64d5df422d6b6f0f41f7e27d
SHA512

37c7c2b7603e8c16983ab7f81ededd29b6c1e654a54385457569fc562d84a424c1725ce49993fb2157eec7dc1d3875017095369244b8b6300c0940e199cf6668
SSDEEP

384:EhBHo7xX9iGgOa7Pfp+/BRiBZWG5VL3ArCQBm+k7OUXiTP:Ek7TiGgH7PR8BnKVL31+k7DX+P

Score

N/A

Malware Config

Signatures

Files

c9bfc54fda3a2290e6dbbf1e694858fa7fa5039b64d5df422d6b6f0f41f7e27d
.dll windows x86

fedfc33dcac1807d8e26bf3a6cf34097

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TerminateThread
SetThreadPriority
CreateThread
GetModuleFileNameA
DisableThreadLibraryCalls
EnterCriticalSection
DeleteCriticalSection
GetSystemDirectoryA
CompareStringW
CreateProcessA
WriteFile
GetTempPathA
GetLocalTime
VirtualAlloc
VirtualFree
DeleteFileA
Sleep
CreateFileA
GetLastError
CloseHandle
LoadLibraryA
DebugBreakProcess
GetProcAddress

user32

GetDC
GetCursor

wininet

InternetReadFile
InternetCloseHandle
HttpQueryInfoA
InternetOpenUrlA
InternetOpenA

gdi32

GetPixel

advapi32

OpenSCManagerA
CloseServiceHandle
ControlService
OpenServiceA
DeleteService

msvcrt

_except_handler3
sprintf
memcpy
strcat
strcpy
strrchr
strlen
memset

Exports

Exports

DriverProc
modMessage
modmCallback

Sections

dwwoqD
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 334B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy