8ee728c1232dafebfe05a30c18f1e54e0b8dd3f08ad74882d0dd9d2e65a14138 | Triage

Submit
Reports

Overview

overview

1

Static

static

8ee728c123...38.dll

windows7-x64

1

8ee728c123...38.dll

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

8ee728c1232dafebfe05a30c18f1e54e0b8dd3f08ad74882d0dd9d2e65a14138.dll

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

8ee728c1232dafebfe05a30c18f1e54e0b8dd3f08ad74882d0dd9d2e65a14138.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

8ee728c1232dafebfe05a30c18f1e54e0b8dd3f08ad74882d0dd9d2e65a14138
Size

18KB
MD5

0513db4406d1a5b5307f3e49c3af5be6
SHA1

3cf2546147b61270d930a4019fbc4c0f178162ef
SHA256

8ee728c1232dafebfe05a30c18f1e54e0b8dd3f08ad74882d0dd9d2e65a14138
SHA512

068fdefb1a949046f681f86e4ac428f5af8428206ea1779036c7946ac8710ebabc4b060a8f6c5b121126ac3d33a4848646869bc9ab17806c16d4e2b81538c42a
SSDEEP

384:Bgo0+C3cvZqiafPR/jHVeeLfgPqc+urDZRQcNt7X:BW+C3oYXf5/zV7kCBuff5

Score

N/A

Malware Config

Signatures

Files

8ee728c1232dafebfe05a30c18f1e54e0b8dd3f08ad74882d0dd9d2e65a14138
.dll windows x86

f2ee0c01855fd55888fcfd8f5a0b3753

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLocalTime
GetProcAddress
LoadLibraryA
GetLastError
TerminateThread
SetThreadPriority
CreateThread
GetTempPathA
DisableThreadLibraryCalls
ReadFile
DeleteFileA
GetSystemDirectoryA
VirtualAlloc
VirtualFree
Sleep
CreateFileA
WriteFile
CloseHandle
GetModuleFileNameA
CreateProcessA

wininet

InternetOpenA
InternetOpenUrlA
HttpQueryInfoA
InternetReadFile
InternetCloseHandle

advapi32

ControlService
OpenServiceA
DeleteService
OpenSCManagerA
CloseServiceHandle

msvcrt

_except_handler3
memcpy
strlen
sprintf
strcat
strrchr
strcpy
memset

Exports

Exports

DriverProc
modMessage
modmCallback

Sections

raeehqu
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 320B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy