InstallALLHook
Static task
static1
Behavioral task
behavioral1
Sample
e8b861a7174546ad62e7b0599dc4909d312335a9e1cc79c2c40ce804009694a4.dll
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
e8b861a7174546ad62e7b0599dc4909d312335a9e1cc79c2c40ce804009694a4.dll
Resource
win10v2004-20221111-en
General
-
Target
e8b861a7174546ad62e7b0599dc4909d312335a9e1cc79c2c40ce804009694a4
-
Size
54KB
-
MD5
a2fa7b3941a5bd8ecf5648d32f6ab31b
-
SHA1
b9bc95deceeee3e340ff71455319032647dec92a
-
SHA256
e8b861a7174546ad62e7b0599dc4909d312335a9e1cc79c2c40ce804009694a4
-
SHA512
1587f2ab8394f9d3df5f9e6a481a632c5367aeaf52c5589d0750e15b713b41abc1313273c2f674811319be1de9304924e86e1b7a77c3eef15910d505bc711237
-
SSDEEP
768:Q7wwW49/Woz3edxV4inmPFxHYwygj850oBsVl7zdQOq3caXGhqKXIMYOPY:Owwrje9FmPRyfBClF/q3caXS4f
Malware Config
Signatures
Files
-
e8b861a7174546ad62e7b0599dc4909d312335a9e1cc79c2c40ce804009694a4.dll windows x86
f433e7fcc51e68080022754836705744
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Imports
kernel32
GetModuleHandleA
LoadLibraryA
GetProcAddress
ExitProcess
VirtualAlloc
VirtualFree
user32
MessageBoxA
Exports
Exports
Sections
CODE Size: - Virtual size: 40KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
DATA Size: - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
BSS Size: - Virtual size: 4KB
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.edata Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.fpuckad Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
i61fdz7v Size: 34KB - Virtual size: 36KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
071vrjjb Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ