609a5f4862f55c89c34bb15802721c192348e16476fb428e5a435d76ef5460d6 | Triage

Submit
Reports

Overview

overview

3

Static

static

609a5f4862...d6.dll

windows7-x64

1

609a5f4862...d6.dll

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

609a5f4862f55c89c34bb15802721c192348e16476fb428e5a435d76ef5460d6.dll

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

609a5f4862f55c89c34bb15802721c192348e16476fb428e5a435d76ef5460d6.dll

Resource

win10v2004-20221111-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

609a5f4862f55c89c34bb15802721c192348e16476fb428e5a435d76ef5460d6
Size

56KB
MD5

b080fbb4e8f60f156cc0b61f1157d010
SHA1

4d6fa9315da67d1de3b815e707c8a3c17b482d00
SHA256

609a5f4862f55c89c34bb15802721c192348e16476fb428e5a435d76ef5460d6
SHA512

2456ae1381a01baf8d89862178794d62a8138f233d2ac45afa2108c2b72be9a13c070bd433e055a58a9474504c7855669e437ad88f0d0e464d114a6ca984bd73
SSDEEP

768:uXZA+Lmbpiu+s50Oypz5soz4OYUHgRd/3U5:MK+Slr7yOi5sozyUHCfU5

Score

N/A

Malware Config

Signatures

Files

609a5f4862f55c89c34bb15802721c192348e16476fb428e5a435d76ef5460d6
.dll windows x86

13165eb3be4256ac1828b49bcf6520e7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadFile
WriteFile
GetProcAddress
GetModuleHandleA
WriteProcessMemory
GetCurrentProcess
VirtualProtect
CreateFileA
WaitNamedPipeA

msvcrt

_initterm
malloc
_adjust_fdiv
free

Sections

.text
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 406B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.towf0
Size: 4KB - Virtual size: 234B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.towf1
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 88B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy