7fe7aae11a3708584ed6c69a311336cc1ade387506bb51ef9a4d6285d4543dc7 | Triage

Submit
Reports

Overview

overview

1

Static

static

7fe7aae11a...c7.dll

windows7-x64

1

7fe7aae11a...c7.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

7fe7aae11a3708584ed6c69a311336cc1ade387506bb51ef9a4d6285d4543dc7.dll

Resource

win7-20220812-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

7fe7aae11a3708584ed6c69a311336cc1ade387506bb51ef9a4d6285d4543dc7.dll

Resource

win10v2004-20221111-en

windows10-2004-x64

3 signatures

150 seconds

General

Target

7fe7aae11a3708584ed6c69a311336cc1ade387506bb51ef9a4d6285d4543dc7
Size

36KB
MD5

9189fe055c78fbc2420fc0fae28ea920
SHA1

6708f3fb328b8f154044cd46c9371b2e87c9a931
SHA256

7fe7aae11a3708584ed6c69a311336cc1ade387506bb51ef9a4d6285d4543dc7
SHA512

712fd055f912248418cd65e1e8b30c6d38c0e20d3edbf0db3d20e2d2069f8f752c033853e76b3b41f8a7ec7fa04cb72f866b34475b68899177d9ab6693f78be9
SSDEEP

768:Hw3mj2kpenYyQEsSVgNQIrf3yrSFkEQa6nimNjR:Hwlk8nYySLbr/VFIayNN

Score

N/A

Malware Config

Signatures

Files

7fe7aae11a3708584ed6c69a311336cc1ade387506bb51ef9a4d6285d4543dc7
.dll regsvr32 windows x86

ab9985c16269669587dab177628ba188

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WritePrivateProfileStringA
GetLocalTime
CloseHandle
GetWindowsDirectoryA
GetSystemDirectoryA
GetModuleFileNameA
LoadLibraryA
GetProcAddress
InterlockedIncrement
DeleteFileA

user32

DispatchMessageA
TranslateMessage
GetMessageA
CallNextHookEx
RegisterClassExA
DefWindowProcA
FindWindowExA
CreateWindowExA
ShowWindow
KillTimer
SetTimer
PostMessageA

advapi32

RegCloseKey
RegOpenKeyExA
RegSetValueExA
RegCreateKeyExA
RegQueryValueExA

msvcrt

strrchr
_stricmp
_adjust_fdiv
malloc
_initterm
free
strchr
fopen
fwrite
fclose
_access
sprintf
??3@YAXPAX@Z
??2@YAPAXI@Z
_strlwr
__CxxFrameHandler
rand
strstr

Exports

Exports

BIgatTD
DWzDVJEIZSswBdbFsM
DllRegisterServer
DllUnregisterServer
yQb

Sections

.text
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 920B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy