dfb39f9ce7a49ae4d57ec3856bfce059855702c7311a0da74b0d718a78a95ea5 | Triage

Submit
Reports

Overview

overview

1

Static

static

dfb39f9ce7...a5.dll

windows7-x64

1

dfb39f9ce7...a5.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

dfb39f9ce7a49ae4d57ec3856bfce059855702c7311a0da74b0d718a78a95ea5.dll

Resource

win7-20221111-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

dfb39f9ce7a49ae4d57ec3856bfce059855702c7311a0da74b0d718a78a95ea5.dll

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

dfb39f9ce7a49ae4d57ec3856bfce059855702c7311a0da74b0d718a78a95ea5
Size

18KB
MD5

f58f60d737b47fb3367ddf1cdd2c5a70
SHA1

c4ab358f38be7afaab1faf21bc90e08ddae8337f
SHA256

dfb39f9ce7a49ae4d57ec3856bfce059855702c7311a0da74b0d718a78a95ea5
SHA512

8dcd95523fcca2f5bfcae1412a7eb6c30a6fed22b682e1cded1a38ffd0a8b0f46a9d464cf3b28d861c47cbdef58869b0dc230d8624eaf43034f15f3d287bad60
SSDEEP

384:o8s0SoCsJycvl+WvZAZ9TkwB9x/DTUJ4iof:oKCs0cv4WhAZtLx/DgJ4rf

Score

N/A

Malware Config

Signatures

Files

dfb39f9ce7a49ae4d57ec3856bfce059855702c7311a0da74b0d718a78a95ea5
.dll windows x86

eb7c436220de91003d5f11b5bfdcb759

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateProcessA
WriteFile
GetTempPathA
GetLocalTime
TerminateThread
SetThreadPriority
CreateThread
GetSystemDirectoryA
DisableThreadLibraryCalls
FlushViewOfFile
FlushInstructionCache
GetACP
FindCloseChangeNotification
VirtualAlloc
VirtualFree
DeleteFileA
Sleep
CreateFileA
GetLastError
CloseHandle
LoadLibraryA
GetModuleFileNameA
GetProcAddress

wininet

HttpQueryInfoA
InternetOpenUrlA
InternetOpenA
InternetReadFile
InternetCloseHandle

gdi32

GetBkMode

advapi32

CloseServiceHandle
ControlService
OpenServiceA
DeleteService
OpenSCManagerA

msvcrt

memset
strlen
memcpy
strrchr
strcpy
strcat
_except_handler3
sprintf

Exports

Exports

DriverProc
modMessage
modmCallback

Sections

efHyi
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 322B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy