b2a4b97913bb845270b53c40bb677349cfb1de37eaab17858334f2bc3e201184 | Triage

Submit
Reports

Overview

overview

3

Static

static

b2a4b97913...84.dll

windows7-x64

3

b2a4b97913...84.dll

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

b2a4b97913bb845270b53c40bb677349cfb1de37eaab17858334f2bc3e201184.dll

Resource

win7-20220812-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

b2a4b97913bb845270b53c40bb677349cfb1de37eaab17858334f2bc3e201184.dll

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

b2a4b97913bb845270b53c40bb677349cfb1de37eaab17858334f2bc3e201184
Size

167KB
MD5

f10eacd953174e19a4f5882c277c7846
SHA1

84c59a2022f6a9e35300bae470d57971a5a83258
SHA256

b2a4b97913bb845270b53c40bb677349cfb1de37eaab17858334f2bc3e201184
SHA512

4b4bac6f45f8a0ef6c113d462b799a9c27b3fdc15667adc48d235fd8793c106dd27fccaa802947943283099ef754801367897b357af977ed53b27697d3dde573
SSDEEP

3072:berp9/7vi6D7c/a6/nyPbIBIxmcaKDzivouQaZMW:UDt0a6/nyPbLm9KDziv1mW

Score

N/A

Malware Config

Signatures

Files

b2a4b97913bb845270b53c40bb677349cfb1de37eaab17858334f2bc3e201184
.dll windows x86

6a5c5bddd5e6700b990d7572df09a532

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

CommandLineToArgvW
SHCreateDirectoryExW
SHGetSpecialFolderLocation

msvcrt

wprintf
wcsstr
printf
memset
free
exit
_wcslwr
_wcsdup
_ismbblead
_exit
_controlfp
_cexit
_amsg_exit
__setusermatherr
__set_app_type
__p__fmode
__p__commode
__getmainargs
_XcptFilter
_initterm

user32

MessageBoxW
IsWindow

kernel32

ExitProcess
FindNextFileW
GetCurrentProcess
lstrlenW
VirtualProtect
VirtualFree
VirtualAlloc
UnhandledExceptionFilter
TerminateProcess
Sleep
SetUnhandledExceptionFilter
InterlockedExchange
GetProcAddress
GetModuleHandleA
GetFullPathNameW
GetCurrentThreadId
GetCurrentProcessId
FindFirstFileW

advapi32

RegOpenKeyExW
RegQueryValueExW
RegCloseKey

gdi32

PolyDraw
ArcTo

Exports

Exports

CreateTempFile
FIsHTMLFileW
Init
IsDigit
MShutDown
PszDupA
strtrim

Sections

.text
Size: 53KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 93KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 371B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy