98598cecfd20aa3d26db31cb1e993d36f663d5abca9cccfcaa22529dafee9b86 | Triage

Submit
Reports

Overview

overview

3

Static

static

98598cecfd...86.dll

windows7-x64

3

98598cecfd...86.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

98598cecfd20aa3d26db31cb1e993d36f663d5abca9cccfcaa22529dafee9b86.dll

Resource

win7-20221111-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

98598cecfd20aa3d26db31cb1e993d36f663d5abca9cccfcaa22529dafee9b86.dll

Resource

win10v2004-20221111-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

98598cecfd20aa3d26db31cb1e993d36f663d5abca9cccfcaa22529dafee9b86
Size

196KB
MD5

818368d7a76052188b71040061d51202
SHA1

d246bee2380c669d49b7b4894e558728cb572136
SHA256

98598cecfd20aa3d26db31cb1e993d36f663d5abca9cccfcaa22529dafee9b86
SHA512

bbf19bebd5cc8baeaf3e3cd2b3f1d74fdb13ea7d08149bfd0e5922a4072f3287641f123b37d2b54d319d7e20dff39da4d004838f7455867b1178bd2981abafd3
SSDEEP

3072:MGOk0gXaCCZ+aGOjHy39Nq5CYv8wH7JMr/bafJ9CfSnkip9FBMbjRtHGH03Je:TMYASNNqwYEIJMr/bc7dxp9IbXHT

Score

N/A

Malware Config

Signatures

Files

98598cecfd20aa3d26db31cb1e993d36f663d5abca9cccfcaa22529dafee9b86
.dll windows x86

fcdeeec27eec29ae3d18f6219a636f1c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeLibrary
GetProcAddress
LoadLibraryW
SetLastError
LeaveCriticalSection
EnterCriticalSection
lstrcmpiW
DeleteFileW
GetACP
DeleteCriticalSection
WaitForSingleObject
SetEvent
Sleep
InitializeCriticalSection
lstrlenW
HeapAlloc
GetProcessHeap
HeapFree
GetLastError
MultiByteToWideChar
GetFileSize
WriteFile
ReadFile
SetFilePointer
CreateFileW
GetTempFileNameW
GetTempPathW
CreateEventW
CreateThread
lstrcpyW
CloseHandle

user32

CharNextW

winspool.drv

SetJobW
ClosePrinter
GetPrinterW
GetJobW
OpenPrinterW

Exports

Exports

CAPMON_DeleteJob
CAPMON_DeletePrinter
CAPMON_PrinterNameChange
DllEntryPoint
InitializePrintMonitor

Sections

.text
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 172KB - Virtual size: 168KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 944B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 514B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy