b0aa338180ecee8e3d1e383164ba5866fe484c26157bd1a72963750a0be9f1f1 | Triage

Submit
Reports

Overview

overview

3

Static

static

b0aa338180...f1.dll

windows7-x64

1

b0aa338180...f1.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

b0aa338180ecee8e3d1e383164ba5866fe484c26157bd1a72963750a0be9f1f1.dll

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

b0aa338180ecee8e3d1e383164ba5866fe484c26157bd1a72963750a0be9f1f1.dll

Resource

win10v2004-20220901-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

b0aa338180ecee8e3d1e383164ba5866fe484c26157bd1a72963750a0be9f1f1
Size

62KB
MD5

668ae732f46053e28e9a6daa3417b00d
SHA1

b7034d5a4061cd6087f3f1bacfc701e5e318d477
SHA256

b0aa338180ecee8e3d1e383164ba5866fe484c26157bd1a72963750a0be9f1f1
SHA512

3cf7f51492d19cc0c3006100cf3d73aabf0dfba524a1c7f7fb3ee7983e1aac4c79249e61ca5f7337a3315d41ec640b01a036ebd1ec8f9a0801e9b13531bd4a4e
SSDEEP

1536:JRGIv5V/lHHUTE31U9N0mtyC7nToIfMIOPP7DiBXQPsYUMa:GIf/lHH6EFi8STBfCPPdPsGa

Score

N/A

Malware Config

Signatures

Files

b0aa338180ecee8e3d1e383164ba5866fe484c26157bd1a72963750a0be9f1f1
.dll windows x86

a04b944d0bcdbc09c460f461e2310cac

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcess
ReleaseMutex
CreateMutexA
FreeLibrary
SleepEx
CreateThread
SetLastError
lstrlenA
CloseHandle
FindFirstFileA
Sleep
GetModuleHandleA
GetProcAddress
GetEnvironmentVariableA
SetFilePointer
GetCurrentThread
GetLastError
LoadLibraryA

advapi32

OpenThreadToken
OpenProcessToken
GetTokenInformation
AllocateAndInitializeSid
EqualSid
FreeSid
LookupAccountSidA

msvcrt

fread
fwrite
ftell
fseek
fclose
malloc
fopen
strcat
strncpy
memset
strcmp
strlen
_snprintf
strcpy
calloc
_except_handler3
_local_unwind2
strstr
fgets
time
memmove
strftime
localtime
rand
srand
tolower
_pctype
_isctype
__mb_cur_max
strchr
atoi
_vsnprintf
_initterm
_adjust_fdiv
memcpy
free
_stricmp

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 12KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy