afe9e58ed7049fb5dd5112db9d4351b0ca780c93a269e0b3f18101a6908711f1 | Triage

Submit
Reports

Overview

overview

1

Static

static

afe9e58ed7...f1.dll

windows7-x64

1

afe9e58ed7...f1.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

afe9e58ed7049fb5dd5112db9d4351b0ca780c93a269e0b3f18101a6908711f1.dll

Resource

win7-20221111-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

afe9e58ed7049fb5dd5112db9d4351b0ca780c93a269e0b3f18101a6908711f1.dll

Resource

win10v2004-20221111-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

afe9e58ed7049fb5dd5112db9d4351b0ca780c93a269e0b3f18101a6908711f1
Size

17KB
MD5

84ef77bbd71ea79b4b4d4002799470a6
SHA1

a175c8a115a4ddba665b48313fdd33e1e5b07c7d
SHA256

afe9e58ed7049fb5dd5112db9d4351b0ca780c93a269e0b3f18101a6908711f1
SHA512

80c2885c77e93011997196cbc8cba4efc1218226e2b529284d42a5b4a27dde7404b095c8d48fe3e13eea4d4063f781b6b63efa96e18ec786fda2ac755a910b56
SSDEEP

384:aDnI6bOoU8RLzx7XrzBTRDWr4h/kJMHRQbWCVWua:2lb73Lt7XBUr4hMMHRQhza

Score

N/A

Malware Config

Signatures

Files

afe9e58ed7049fb5dd5112db9d4351b0ca780c93a269e0b3f18101a6908711f1
.dll windows x86

538e0db4adf52b812d69472aa7377703

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
DisableThreadLibraryCalls
lstrcmpiW
CreateThread
WideCharToMultiByte
VirtualFreeEx
MultiByteToWideChar
lstrcmpiA
GetProcAddress
VirtualAllocEx
GetModuleHandleA
GetCurrentProcessId
lstrcmpA
VirtualFree
VirtualAlloc
GetModuleHandleW
GetModuleFileNameA
VirtualProtect
IsBadReadPtr
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess

user32

UnhookWindowsHookEx
CallNextHookEx
SetWindowsHookExW

ntdll

RtlFreeAnsiString
NtQueryInformationThread
NtClose
RtlUnicodeStringToAnsiString
NtOpenProcess
strstr
memset
memcpy

Exports

Exports

getActiveDesktop
getWnd

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 724B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy