f6a17f3d2236f0ebf8ad2a154c9eb776ba75b46d5984827d448db93645fc9622 | Triage

Submit
Reports

Overview

overview

1

Static

static

f6a17f3d22...22.dll

windows7-x64

1

f6a17f3d22...22.dll

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

f6a17f3d2236f0ebf8ad2a154c9eb776ba75b46d5984827d448db93645fc9622.dll

Resource

win7-20221111-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

f6a17f3d2236f0ebf8ad2a154c9eb776ba75b46d5984827d448db93645fc9622.dll

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

f6a17f3d2236f0ebf8ad2a154c9eb776ba75b46d5984827d448db93645fc9622
Size

51KB
MD5

0feef5946814c1ae63a0b51c288e0941
SHA1

331ebe38d89b2fada0ed28be564c98f93dd3ff27
SHA256

f6a17f3d2236f0ebf8ad2a154c9eb776ba75b46d5984827d448db93645fc9622
SHA512

3bf2494d9a86421b68d84516febdf5f7c0017690b9ae9bd90ab30bb525ccf9d184fe6d535b17067e09759425417dcca4296cc2a0ba7d205f61d03f8b95483a86
SSDEEP

768:9VTkLLqfgEPc7W8WjMOVGA5IcGtTagCzjPs4CjoxK8Ke9EQ3uUO+1+taTmIhc:fkCfnedjIIDtojZMUO+XS

Score

N/A

Malware Config

Signatures

Files

f6a17f3d2236f0ebf8ad2a154c9eb776ba75b46d5984827d448db93645fc9622
.dll windows x86

df2ee74ec675e21df2ef8379f785b393

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

RtlStringFromGUID
RtlClearAllBits
RtlEqualString
ProbeForRead
IoDisconnectInterrupt
KeInsertQueueDpc
RtlFreeAnsiString
KeRemoveQueue
MmForceSectionClosed
KeInitializeMutex
RtlInitializeSid
RtlSecondsSince1980ToTime
RtlInitString
FsRtlGetNextFileLock
IoMakeAssociatedIrp
IoReleaseCancelSpinLock
KeInitializeDeviceQueue
MmIsDriverVerifying
MmLockPagableDataSection
RtlCompareString
ZwQuerySymbolicLinkObject
RtlTimeFieldsToTime
MmUnmapIoSpace
IoWriteErrorLogEntry
KeSetTimerEx
RtlValidSid

Exports

Exports

?bmjewaQlfhkgVtUBcwwbq@@YGGEJ@Z
?spYGpptl@@YGMEPAD@Z
?ypkEarbjfrFPdormZZjgb@@YGPADJG@Z

Sections

.text
Size: 25KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

INIT
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy