e57358299e7a356bdc92de7f94104d1c353d48a4a9423add92a6f906b7fe93a4 | Triage

Submit
Reports

Overview

overview

8

Static

static

e57358299e...a4.dll

windows7-x64

1

e57358299e...a4.dll

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

e57358299e7a356bdc92de7f94104d1c353d48a4a9423add92a6f906b7fe93a4.dll

Resource

win7-20221111-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

e57358299e7a356bdc92de7f94104d1c353d48a4a9423add92a6f906b7fe93a4.dll

Resource

win10v2004-20221111-en

windows10-2004-x64

4 signatures

150 seconds

General

Target

e57358299e7a356bdc92de7f94104d1c353d48a4a9423add92a6f906b7fe93a4
Size

150KB
MD5

a1d6f687ecbd4403458fec3fc4ef34e0
SHA1

7188902d3d761cb0b5f0f6cb33f69d4e934112af
SHA256

e57358299e7a356bdc92de7f94104d1c353d48a4a9423add92a6f906b7fe93a4
SHA512

4472a3acc2a7270456a290678b36cadf01f7e7ad744c889cd5cfe4b8223faf60f185306e6319207264d3470ec4a74e15a55ab65b0d59c2fe577014179b76ea28
SSDEEP

3072:TTWDGeQbILS00wgTQhkLGhBvgtWFdyR5vt2mG6:TTqjL4ijBhmT

Score

N/A

Malware Config

Signatures

Files

e57358299e7a356bdc92de7f94104d1c353d48a4a9423add92a6f906b7fe93a4
.dll windows x86

44dbb63847183a3f7c379297d8d7ddf2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

GetOpenFileNameW
ChooseFontW
GetSaveFileNameW
CommDlgExtendedError

kernel32

GetModuleHandleW
FindClose
FindNextFileA
GetStringTypeW
FindFirstFileA
EnumResourceLanguagesA
WideCharToMultiByte
ReadFile
WriteFile
SetFilePointer
GlobalHandle
IsDBCSLeadByte
GetModuleHandleA
VirtualProtect
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetProcessHeap
GetModuleHandleW
CreateProcessA
GetTempFileNameA
HeapFree
HeapAlloc
LoadLibraryW
InterlockedExchange
Sleep

oleaut32

DispGetIDsOfNames
CreateErrorInfo
OleCreateFontIndirect
GetErrorInfo
SetErrorInfo
GetActiveObject
VariantInit
SysFreeString

Exports

Exports

AlphaBlend
GradientFill
TransparentBlt

Sections

.text
Size: 97KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 50KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 334B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy