0444cc7eca51deba83f6271d3141bcf533d22e37be24a18addc1211995e1a48c | Triage

Submit
Reports

Overview

overview

1

Static

static

0444cc7eca...8c.dll

windows7-x64

1

0444cc7eca...8c.dll

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

0444cc7eca51deba83f6271d3141bcf533d22e37be24a18addc1211995e1a48c.dll

Resource

win7-20220901-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

0444cc7eca51deba83f6271d3141bcf533d22e37be24a18addc1211995e1a48c.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

0444cc7eca51deba83f6271d3141bcf533d22e37be24a18addc1211995e1a48c
Size

17KB
MD5

d92dcdd851e578313cc3f942597368d8
SHA1

1119a98879a75ff349e9465fca74a0fe085c789a
SHA256

0444cc7eca51deba83f6271d3141bcf533d22e37be24a18addc1211995e1a48c
SHA512

ce688a066c622c527f5edb470aedc69edf025807428b7167e12daedafe9e87c7f14da06e63b28eb04395c64811124fd10a7d28d334bf94a5630ac29439d11d49
SSDEEP

384:gBHo7xX9iGgOa7Pfp+/BRiBZWG5VL3ArCQBX+DmTVrUXiJP:d7TiGgH7PR8BnKVL3o+DmTqXUP

Score

N/A

Malware Config

Signatures

Files

0444cc7eca51deba83f6271d3141bcf533d22e37be24a18addc1211995e1a48c
.dll windows x86

20099336c40ad9e811ec8e19294eafa3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteFileA
GetSystemDirectoryA
TerminateThread
SetThreadPriority
CreateThread
GetModuleFileNameA
DisableThreadLibraryCalls
FatalAppExitW
Sleep
EnumSystemLanguageGroupsA
EnumSystemCodePagesW
CreateProcessA
WriteFile
GetTempPathA
GetLocalTime
VirtualAlloc
VirtualFree
CreateFileA
GetLastError
CloseHandle
LoadLibraryA
ExpandEnvironmentStringsA
GetProcAddress

user32

GetCursor
GetDC

wininet

InternetReadFile
InternetCloseHandle
HttpQueryInfoA
InternetOpenUrlA
InternetOpenA

advapi32

ControlService
OpenServiceA
DeleteService
OpenSCManagerA
CloseServiceHandle

msvcrt

sprintf
memset
_except_handler3
strcat
strcpy
strrchr
strlen
memcpy

Exports

Exports

DriverProc
modMessage
modmCallback

Sections

tHu6GeT
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 330B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy