34dad1aa6808eb83991d85848b78b734b7eab19fb50b63531ca6c246be8284af | Triage

Submit
Reports

Overview

overview

1

Static

static

34dad1aa68...af.dll

windows7-x64

1

34dad1aa68...af.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

34dad1aa6808eb83991d85848b78b734b7eab19fb50b63531ca6c246be8284af.dll

Resource

win7-20221111-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

34dad1aa6808eb83991d85848b78b734b7eab19fb50b63531ca6c246be8284af.dll

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

34dad1aa6808eb83991d85848b78b734b7eab19fb50b63531ca6c246be8284af
Size

179KB
MD5

14052791cf6fe74fecae9efa68786674
SHA1

66c3696983ea40ae18776280aca88ed0614708e0
SHA256

34dad1aa6808eb83991d85848b78b734b7eab19fb50b63531ca6c246be8284af
SHA512

7af36225028a8b0405e9a89e3fb62ac3589a8763a00ef1cba43394b610d4956f7f9d157b608332f6e52cf3d8cd657baad9adffc0a90da59a48bb14eb260f6470
SSDEEP

3072:CjrCPqIu2RoS7XrEraULtiIXEA8tOD9T6FaXRvjRwiUZ0CAt4LokSnxk8Dl3mp:CX7uvIhX6ODkFaXRcGPt4LHSzFmp

Score

N/A

Malware Config

Signatures

Files

34dad1aa6808eb83991d85848b78b734b7eab19fb50b63531ca6c246be8284af
.dll windows x86

a02f8be2985121c28efe9ded7707ce52

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

user32

GetKeyboardType

advapi32

RegQueryValueExA

oleaut32

SysFreeString

version

VerQueryValueA

gdi32

UnrealizeObject

comctl32

ImageList_SetIconSize

comdlg32

GetSaveFileNameA

Exports

Exports

DoMyJob
GetPTPluginName
LoadDll
StartPTPlugin

Sections

CODE
Size: 169KB - Virtual size: 476KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy