d4f709a81714cf910836fe2ada83d325ff12a9339c06da95f7e5603b05700daf | Triage

Submit
Reports

Overview

overview

3

Static

static

d4f709a817...af.dll

windows7-x64

1

d4f709a817...af.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

d4f709a81714cf910836fe2ada83d325ff12a9339c06da95f7e5603b05700daf.dll

Resource

win7-20220901-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

d4f709a81714cf910836fe2ada83d325ff12a9339c06da95f7e5603b05700daf.dll

Resource

win10v2004-20221111-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

d4f709a81714cf910836fe2ada83d325ff12a9339c06da95f7e5603b05700daf
Size

49KB
MD5

85d7899ae7582b653462b4c95f35d169
SHA1

67cb44369947519c665c93323e83043c9d9c94d5
SHA256

d4f709a81714cf910836fe2ada83d325ff12a9339c06da95f7e5603b05700daf
SHA512

b4e26d15fc8e9756801544f26a68688b86965984576a8ebc11a3a431ba3e8e6cb1fd01672bc1f2b673d6646ed159305e8caece218c8b83295d80e77b9784b3b2
SSDEEP

1536:IoXxpnrmZIWdcAye+kL5RLNWGkWmrz2ErYjn:NDytcAyeR5RLNsrz2ErYjn

Score

N/A

Malware Config

Signatures

Files

d4f709a81714cf910836fe2ada83d325ff12a9339c06da95f7e5603b05700daf
.dll windows x86

af17c3ca9646b6229cefd27099d61b5d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

shell32

ShellExecuteA

user32

ExitWindowsEx

ole32

CreateStreamOnHGlobal

psapi

GetModuleFileNameExA

msvcrt

malloc

advapi32

RegCloseKey

ws2_32

listen

imm32

ImmReleaseContext

winmm

waveInUnprepareHeader

gdi32

DeleteObject

shlwapi

StrCmpW

avicap32

capCreateCaptureWindowA

Exports

Exports

gytfredwse
ServiceMain
rftgyhujk

Sections

.erdf
Size: 25KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

edrft
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rtyhgj
Size: 3KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 6KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy