b0debb8ca9da22433d179f37b32226179bed077ebcd868b606033d32bac16b7b | Triage

Submit
Reports

Overview

overview

Static

static

b0debb8ca9...7b.dll

windows7-x64

b0debb8ca9...7b.dll

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

b0debb8ca9da22433d179f37b32226179bed077ebcd868b606033d32bac16b7b.dll

Resource

win7-20221111-en

evasion persistence

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

b0debb8ca9da22433d179f37b32226179bed077ebcd868b606033d32bac16b7b.dll

Resource

win10v2004-20221111-en

evasion persistence

windows10-2004-x64

8 signatures

150 seconds

General

Target

b0debb8ca9da22433d179f37b32226179bed077ebcd868b606033d32bac16b7b
Size

23KB
MD5

f39dedb5dee684c4b67e4378cf93f676
SHA1

6aa3a28edd348b402f04c1d275f24945d8979663
SHA256

b0debb8ca9da22433d179f37b32226179bed077ebcd868b606033d32bac16b7b
SHA512

4710b0c7a7ea4043c0f1a429b66ed6fc1355abefcd67a08f026b6297847380c0480789e13766970050006e31de0b71028dd9847ec7b1342a967d05ac0b39cd24
SSDEEP

384:mPyZNjtU2mWAQuXL+dYsWlv1IfglVN9dOUY8+Z+rE8kWkzX1jxuHz4I2A1Y4xWyg:GyZez+dYsWlafglVN9dOlNXNWkzBxuTO

Score

N/A

Malware Config

Signatures

Files

b0debb8ca9da22433d179f37b32226179bed077ebcd868b606033d32bac16b7b
.dll windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

EnHookWindow

Sections

CODE
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 160B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 5KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 72B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy