ccf91d256f4fea5e7bdb881cc35fcf2fc301485658426b663b040938c1eb9c65 | Triage

Submit
Reports

Overview

overview

3

Static

static

ccf91d256f...65.dll

windows7-x64

3

ccf91d256f...65.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

ccf91d256f4fea5e7bdb881cc35fcf2fc301485658426b663b040938c1eb9c65.dll

Resource

win7-20220812-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

ccf91d256f4fea5e7bdb881cc35fcf2fc301485658426b663b040938c1eb9c65.dll

Resource

win10v2004-20221111-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

ccf91d256f4fea5e7bdb881cc35fcf2fc301485658426b663b040938c1eb9c65
Size

43KB
MD5

1cf66b34b14a3b68a41ca49b60e8e3b7
SHA1

64e1b44a8a93042c96d4c340571a49c16e526dd8
SHA256

ccf91d256f4fea5e7bdb881cc35fcf2fc301485658426b663b040938c1eb9c65
SHA512

f4a169bd43761f263037b1ae142f8003b52c72d6dfe2c17bf326e1fb644b86446792cfb369b36c3964ef402263fa3168cc63181667a3827bb82497585d77c8dd
SSDEEP

768:SzA7x2W8YI5axaSltEzm7mmMjoFK08IhskLqhcbD6NN+61fxyN2jen1611FeCjf:KAw/P5axaj9mM9PIhskLqYKF1Ijw1J

Score

N/A

Malware Config

Signatures

Files

ccf91d256f4fea5e7bdb881cc35fcf2fc301485658426b663b040938c1eb9c65
.dll windows x86

4158b9b4296c227200f85a84b1f1cea6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

user32

ExitWindowsEx

shell32

ShellExecuteA

psapi

GetModuleFileNameExA

shlwapi

StrCmpW

winmm

waveInUnprepareHeader

ole32

CreateStreamOnHGlobal

ws2_32

listen

advapi32

RegCloseKey

gdi32

DeleteObject

avicap32

capCreateCaptureWindowA

imm32

ImmReleaseContext

msvcrt.dll

malloc

Exports

Exports

gytfredwse
ServiceMain
rftgyhujk

Sections

.erdf
Size: 25KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

edrft
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rtyhgj
Size: 3KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy