ce6c1eb217b04a0dcfdb77b1a3cd5eb6491d988bf1e2c34758b006aef50bc0e2 | Triage

Submit
Reports

Overview

overview

1

Static

static

ce6c1eb217...e2.dll

windows7-x64

1

ce6c1eb217...e2.dll

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

ce6c1eb217b04a0dcfdb77b1a3cd5eb6491d988bf1e2c34758b006aef50bc0e2.dll

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

ce6c1eb217b04a0dcfdb77b1a3cd5eb6491d988bf1e2c34758b006aef50bc0e2.dll

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

ce6c1eb217b04a0dcfdb77b1a3cd5eb6491d988bf1e2c34758b006aef50bc0e2
Size

18KB
MD5

7bc2dbc36f3eef1e689869977969e8f7
SHA1

0ea115b6bc3787e5f593c2b1ae87f6bcf441259f
SHA256

ce6c1eb217b04a0dcfdb77b1a3cd5eb6491d988bf1e2c34758b006aef50bc0e2
SHA512

e31726b0f34275422bdd14242d95bac4bdc9fe499002c8e116f1e91b59a436becd1ee55ef1dffdddd4d551c247586cc9e8fd46ded31c4c339cf0b402c4749d18
SSDEEP

384:zSPVJ5Yq2DEant/p9iUSwJoAmcjrT6Qr6QTdvKfh3ezPySmAKN:nj/p9bSwNDjrT6a6CdyfRLpN

Score

N/A

Malware Config

Signatures

Files

ce6c1eb217b04a0dcfdb77b1a3cd5eb6491d988bf1e2c34758b006aef50bc0e2
.dll windows x86

b3e0395286f09a039c649cd9bd85eeda

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeLibrary
GetProcAddress
LoadLibraryA
lstrcatA
GetSystemDirectoryA
IsBadReadPtr
lstrcpyA
lstrcmpA
ExitProcess
lstrcmpiA
Sleep
lstrlenA
GetTickCount
lstrcpynA
WritePrivateProfileStringA
GetSystemTime
GetTempPathA
GetPrivateProfileStringA
GetModuleFileNameA
GetModuleHandleA
CloseHandle
ReadFile
SetFilePointer
CreateFileA
CreateThread
UnmapViewOfFile
OutputDebugStringA
MapViewOfFile
OpenFileMappingA
GetLastError
CreateMutexA

user32

CallNextHookEx
SetWindowsHookExA
UnhookWindowsHookEx
PostThreadMessageA
FindWindowA

wininet

InternetCloseHandle
InternetReadFile
HttpQueryInfoA
InternetOpenUrlA
InternetOpenA
InternetQueryDataAvailable
HttpSendRequestA
HttpOpenRequestA
InternetConnectA

Exports

Exports

Hookoff
Hookon

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy