a761e2f444faa0be6f00c190dea94198d58bc4d5d2fd2054d20d5ed5d4f8be67 | Triage

Submit
Reports

Overview

overview

1

Static

static

a761e2f444...67.dll

windows7-x64

1

a761e2f444...67.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

a761e2f444faa0be6f00c190dea94198d58bc4d5d2fd2054d20d5ed5d4f8be67.dll

Resource

win7-20221111-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

a761e2f444faa0be6f00c190dea94198d58bc4d5d2fd2054d20d5ed5d4f8be67.dll

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

a761e2f444faa0be6f00c190dea94198d58bc4d5d2fd2054d20d5ed5d4f8be67
Size

41KB
MD5

4f12eb61e3e9f3800f402c31b440b62d
SHA1

86a7d58828b3dc2c8c1868fe37cf4f2fb40fe522
SHA256

a761e2f444faa0be6f00c190dea94198d58bc4d5d2fd2054d20d5ed5d4f8be67
SHA512

45b075bfa1c52cb3b7c2b22b6a94b641579a065fa95c776e777cd1f6172e24483031b6b7c017c39b6c74ee8441d443f51d7b05236b8d39193c013467deacffef
SSDEEP

768:oaZm9kWno3CBDjjwobhGDXsYk8Knozg3ajqaXfcHJ5YZhw:TZ4kWoSBXj4rsJozgq+GfcHJ5YZhw

Score

N/A

Malware Config

Signatures

Files

a761e2f444faa0be6f00c190dea94198d58bc4d5d2fd2054d20d5ed5d4f8be67
.dll windows x86

b22af87d2c40d29e3d1950e4aac1a9f9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

RtlSubtreePredecessor
RtlRealSuccessor
ExFreePoolWithTag
ExAllocatePool
KeReadStateMutex
IoAttachDevice
KeSetTimer
RtlRealPredecessor
IoAllocateMdl
ZwOpenEvent
KeClearEvent
RtlCreateHeap
VerSetConditionMask
RtlFreeHeap
RtlInitUnicodeString
KeSetEvent
RtlDestroyHeap
KeInitializeEvent
RtlVerifyVersionInfo
RtlFreeUnicodeString
RtlAllocateHeap
KeWaitForSingleObject
KePulseEvent
RtlxUnicodeStringToOemSize
memcpy
memset

Exports

Exports

_GetFirmware@8

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 140B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 79B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

INIT
Size: 1024B - Virtual size: 648B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 170B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy