ef18a440233378d13cf6e7b516e05192d73afddb8ac8f5c4d991511bfd0b6d80 | Triage

Submit
Reports

Overview

overview

1

Static

static

ef18a44023...80.dll

windows7-x64

1

ef18a44023...80.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

ef18a440233378d13cf6e7b516e05192d73afddb8ac8f5c4d991511bfd0b6d80.dll

Resource

win7-20221111-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

ef18a440233378d13cf6e7b516e05192d73afddb8ac8f5c4d991511bfd0b6d80.dll

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

ef18a440233378d13cf6e7b516e05192d73afddb8ac8f5c4d991511bfd0b6d80
Size

72KB
MD5

1a18bab376462b6f7eb59bfd327127d0
SHA1

4001c35cff523bc14358ab552c3367b3e7233d83
SHA256

ef18a440233378d13cf6e7b516e05192d73afddb8ac8f5c4d991511bfd0b6d80
SHA512

c8a3fa4dae609c93985be4a3f695a305b1e270287ffa841920926b90ec5e98f223031474c8dc1375240d7350bf7ad943eb55990d302534ee9057c9ab6098c383
SSDEEP

1536:33rnmXyfOG4XqoaFr8/RTCC1XH+gHgv96Zl+:rnmOpPr8ZTCAX+5v9Ol+

Score

N/A

Malware Config

Signatures

Files

ef18a440233378d13cf6e7b516e05192d73afddb8ac8f5c4d991511bfd0b6d80
.dll windows x86

a13826d314a739c6fd93e0d0711a4d85

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
SetLastError
WritePrivateProfileStructA
SetHandleCount
IsBadStringPtrA
SetConsoleCtrlHandler
WriteFile
GlobalUnfix
RtlZeroMemory
GetUserDefaultLCID
GetCommandLineA
GetStartupInfoA
ExitProcess

ntdll

RtlZeroHeap
vsprintf
NtLockFile
strstr
NtReplaceKey

Sections

.rdata
Size: 4KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.adata
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

weijunli
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy