f1d3e9a9c3e00bd9a3d0b28001d9b47c8459887d4b9d9e81bc0d58e6cbd80a1b | Triage

Submit
Reports

Overview

overview

1

Static

static

f1d3e9a9c3...1b.dll

windows7-x64

1

f1d3e9a9c3...1b.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

f1d3e9a9c3e00bd9a3d0b28001d9b47c8459887d4b9d9e81bc0d58e6cbd80a1b.dll

Resource

win7-20221111-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

f1d3e9a9c3e00bd9a3d0b28001d9b47c8459887d4b9d9e81bc0d58e6cbd80a1b.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

f1d3e9a9c3e00bd9a3d0b28001d9b47c8459887d4b9d9e81bc0d58e6cbd80a1b
Size

32KB
MD5

96da7c152fb851d4ae8c4e9135e8e3d8
SHA1

39a0d3a6d8cbbb11c7384e53fdb8120242271220
SHA256

f1d3e9a9c3e00bd9a3d0b28001d9b47c8459887d4b9d9e81bc0d58e6cbd80a1b
SHA512

9b659d7039d9bdd700b0ddff8cbb3cfb42a091f2c4ca5df484efde71bcc6175d96981183c59da76167eca22f00dd117e1bf8c586a9d7353326fcdd614acda2fc
SSDEEP

384:S8+XWC3X7cR7c31UdUQbdMF3fO6PVhVXYIfjib25RFcVnvkOZQUkGdbeCPyjh1m7:XCHGcFxQbdmfOsSWibKCvZTkiw1ixP

Score

N/A

Malware Config

Signatures

Files

f1d3e9a9c3e00bd9a3d0b28001d9b47c8459887d4b9d9e81bc0d58e6cbd80a1b
.dll windows x86

6205c8825128676c4babd91af9fc05a5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MoveFileA
GetModuleFileNameA
GetTickCount
GetTempPathA
GetFullPathNameA
CloseHandle
LoadLibraryA
CreateFileA
CopyFileA
GetProcAddress
Sleep
ExitProcess
DeleteFileA
WriteFile

user32

UnhookWinEvent

advapi32

RegDeleteKeyA
RegCloseKey
RegCreateKeyA
RegSetValueExA

msvcrt

_beginthread
calloc
rand
sprintf
srand
printf
??3@YAXPAX@Z
??2@YAPAXI@Z
free
rename
strstr
_except_handler3

shlwapi

PathFileExistsA

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 542B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy