9ba12093858d941c6d69a9a4ab7358d9657fcd1a403e40bd558f612df1becd14 | Triage

Submit
Reports

Overview

overview

1

Static

static

9ba1209385...14.dll

windows7-x64

1

9ba1209385...14.dll

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

9ba12093858d941c6d69a9a4ab7358d9657fcd1a403e40bd558f612df1becd14.dll

Resource

win7-20221111-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

9ba12093858d941c6d69a9a4ab7358d9657fcd1a403e40bd558f612df1becd14.dll

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

9ba12093858d941c6d69a9a4ab7358d9657fcd1a403e40bd558f612df1becd14
Size

60KB
MD5

dedfaf2ba664f5111167e31870f515a0
SHA1

215d3d07fcb6701563681424205b41c6553c9bc9
SHA256

9ba12093858d941c6d69a9a4ab7358d9657fcd1a403e40bd558f612df1becd14
SHA512

40b493e1839b36ba5087ea46a4d0b0545a40c773708991d8377a66484db755f25e356851355600abefdc830cc6361777113f7dd492bcebd3e7b5eebfc226ec3f
SSDEEP

768:UuVNeNjEN5w1nzIDFB4e73BqKOkf4B/OQ7VJ47UAyoPIs8WHit/:jV8NqMnzKN4KOkf4BWsziUAy/9jt

Score

N/A

Malware Config

Signatures

Files

9ba12093858d941c6d69a9a4ab7358d9657fcd1a403e40bd558f612df1becd14
.dll windows x86

f691f7c4420b77bde12a5a034b5c12b9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_vsnprintf
tolower
strrchr
exit
wcsstr
wcscpy
wcsncat
strlen
wcslen
_except_handler3
strstr
strncpy
malloc
free
memcpy
mbstowcs
??2@YAPAXI@Z
wcscmp
??3@YAXPAX@Z
sprintf
memset
_strupr
_strcmpi

gdi32

CreateCompatibleDC
CreateDCA
GetDeviceCaps
CreateCompatibleBitmap
SelectObject
BitBlt
DeleteObject
DeleteDC

kernel32

WideCharToMultiByte
GetFileAttributesW
TerminateThread
Sleep
WritePrivateProfileStringA
GetTempPathA
GetFileSize
WriteFile
DeleteFileA
lstrcpynA
GetPrivateProfileStringA
GetProcessHeap
HeapAlloc
LoadLibraryA
HeapFree
CloseHandle
SetFilePointer
GetModuleHandleA
FreeLibrary
ReadFile

user32

wsprintfA
GetClassNameW
GetWindow

Exports

Exports

CancelDll
LoadDll

Sections

.text
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy