c65ed0c0cbd6044b4d0b6105888ef31a5b9559a50addeacd28937772301d2bbb | Triage

Submit
Reports

Overview

overview

1

Static

static

c65ed0c0cb...bb.dll

windows7-x64

1

c65ed0c0cb...bb.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

c65ed0c0cbd6044b4d0b6105888ef31a5b9559a50addeacd28937772301d2bbb.dll

Resource

win7-20220812-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

c65ed0c0cbd6044b4d0b6105888ef31a5b9559a50addeacd28937772301d2bbb.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

3 signatures

150 seconds

General

Target

c65ed0c0cbd6044b4d0b6105888ef31a5b9559a50addeacd28937772301d2bbb
Size

32KB
MD5

1c97151b1feaae3d8a3684b5da443720
SHA1

4b90ae009ffabbdce428cfd5fe73520e9d6e8b20
SHA256

c65ed0c0cbd6044b4d0b6105888ef31a5b9559a50addeacd28937772301d2bbb
SHA512

f9c0a943cbe0968fdf6dddf68c07f0a58d1089fafa0e207551dd25ae09d3840b1e33f672ec1c4304003d9963f8d3f23a8bacb76e45f5baa4051685192521515c
SSDEEP

384:olpvd01CadeqvDXFldHMJ62PbrcSpcYP4aMTiq/d:olpF08y1HMk4brcQdP4aMTiq/

Score

N/A

Malware Config

Signatures

Files

c65ed0c0cbd6044b4d0b6105888ef31a5b9559a50addeacd28937772301d2bbb
.dll regsvr32 windows x86

78dcda6fd23b685dcce7bdb3836fa65b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateThread
WinExec
GetSystemDirectoryA
GetWindowsDirectoryA
CloseHandle
DeleteFileA
InterlockedIncrement
GetModuleFileNameA
LoadLibraryA
GetLocalTime
GetProcAddress

user32

GetMessageA
TranslateMessage
DispatchMessageA
SetWindowsHookExA
CallNextHookEx
RegisterClassExA
SetTimer
KillTimer
UnhookWindowsHookEx
CreateWindowExA
ShowWindow
FindWindowExA
PostMessageA
DefWindowProcA

advapi32

RegQueryValueExA
RegOpenKeyExA
RegSetValueExA
RegCreateKeyExA
RegCloseKey

shell32

SHGetSpecialFolderPathA

msvcrt

_initterm
free
strchr
fopen
fwrite
fclose
strrchr
_access
_stricmp
malloc
_adjust_fdiv
_strlwr
strstr
??2@YAPAXI@Z
??3@YAXPAX@Z
sprintf
__CxxFrameHandler

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 782B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy