b80ca9e7f5b18413101a5baf9b1a53ee55fac8243e495fcf332060cf10704558 | Triage

Submit
Reports

Overview

overview

1

Static

static

b80ca9e7f5...58.dll

windows7-x64

1

b80ca9e7f5...58.dll

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

b80ca9e7f5b18413101a5baf9b1a53ee55fac8243e495fcf332060cf10704558.dll

Resource

win7-20220812-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

b80ca9e7f5b18413101a5baf9b1a53ee55fac8243e495fcf332060cf10704558.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

b80ca9e7f5b18413101a5baf9b1a53ee55fac8243e495fcf332060cf10704558
Size

24KB
MD5

de4a583ad23ca1e3c7b8b480470131db
SHA1

6570242f2799e9f31acc2a0d5124977492fdf346
SHA256

b80ca9e7f5b18413101a5baf9b1a53ee55fac8243e495fcf332060cf10704558
SHA512

d28078687d1c63be62ba68d0093ef13b65a40f5577b3a7322f35e199bb3874de0f44314f55d1e1cd0cc8f97c98ae83361db4018d6fb3e1673a8234c93aa4e696
SSDEEP

96:5zqA64Qgcnz3LY7ItbjC0wVfcjJ9y381t0M0/Mp5Lxu1GF:5+oWCTE9s38T0M0/JM

Score

N/A

Malware Config

Signatures

Files

b80ca9e7f5b18413101a5baf9b1a53ee55fac8243e495fcf332060cf10704558
.dll windows x86

b1e3a7331da314d1f9d07dedb2e5f250

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
WriteFile
SetFilePointer
CreateFileA
GetCurrentProcess
GetProcAddress
LoadLibraryA
GetProfileIntA
lstrcatA
GetCurrentProcessId
GetLocalTime
lstrcpyA
GetCurrentThreadId

user32

OpenWindowStationA
GetThreadDesktop
GetProcessWindowStation
ToAscii
GetKeyboardState
CallNextHookEx
SetProcessWindowStation
OpenDesktopA
SetThreadDesktop
GetActiveWindow
wsprintfA
GetWindowTextA
SetWindowsHookExA

msvcrt

_adjust_fdiv
malloc
_initterm
free

Exports

Exports

SK

Sections

.text
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 961B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 132B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Share
Size: 4KB - Virtual size: 264B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 266B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy