f6494a3feb74399bcb227f5247342d456167ddd2d92747b70182b30b18408049 | Triage

Submit
Reports

Overview

overview

1

Static

static

f6494a3feb...49.dll

windows7-x64

1

f6494a3feb...49.dll

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

f6494a3feb74399bcb227f5247342d456167ddd2d92747b70182b30b18408049.dll

Resource

win7-20220812-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

f6494a3feb74399bcb227f5247342d456167ddd2d92747b70182b30b18408049.dll

Resource

win10v2004-20221111-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

f6494a3feb74399bcb227f5247342d456167ddd2d92747b70182b30b18408049
Size

39KB
MD5

83fc87420e017a9749347e5927f39408
SHA1

ca61b8da1c491700d506771e53734b1d5334b006
SHA256

f6494a3feb74399bcb227f5247342d456167ddd2d92747b70182b30b18408049
SHA512

102b993439ee2e111c3eb1d91aa86a228eff3d9847dce03c420756019fcffb7dada33fcd4909aaa0b039be9e0ac6ebe161def9bc82d5c0376ec215e5a10a75e9
SSDEEP

768:0T2MU1esVbohjfn6vVn/4icy8gNfPyru8A2lKGKyNQ1j6c56oW7S:M2MUZbY2GicUNfPXkQ1j6rq

Score

N/A

Malware Config

Signatures

Files

f6494a3feb74399bcb227f5247342d456167ddd2d92747b70182b30b18408049
.dll windows x86

ac7c11958e3f99404b4427d94061c528

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualFree
GetProcAddress
GetModuleHandleA
VirtualAlloc
FreeResource
AddAtomA
FindResourceA
SizeofResource
LoadResource
LockResource
FindAtomA

user32

WaitMessage
TranslateMessage
UnpackDDElParam
UnregisterHotKey
UnregisterClassA
WinHelpA
UnloadKeyboardLayout
UnionRect

advapi32

RegDeleteKeyA
RegSetValueA
CryptVerifySignatureA
RegQueryValueA
RegCloseKey
RegQueryMultipleValuesA
RegQueryInfoKeyA

Exports

Exports

xqenawsspz
znddf

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 887B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 108B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 246B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy