krnl
Static task
static1
Behavioral task
behavioral1
Sample
df09c3ccc09e6a7ad4daa04fdfb778dbf6a06c791a1f694724c8ed527e2bce15.dll
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
df09c3ccc09e6a7ad4daa04fdfb778dbf6a06c791a1f694724c8ed527e2bce15.dll
Resource
win10v2004-20220812-en
General
-
Target
df09c3ccc09e6a7ad4daa04fdfb778dbf6a06c791a1f694724c8ed527e2bce15
-
Size
5KB
-
MD5
281adc1ceae97e998913cce7d86e49d0
-
SHA1
255d7d2c000334123e78e446ec78f3b1d0f1cc66
-
SHA256
df09c3ccc09e6a7ad4daa04fdfb778dbf6a06c791a1f694724c8ed527e2bce15
-
SHA512
decc0ba4a836de9b6cca87aae4245d77816cd9a058552d1eb90e141ac4ea31712e2140135044151975e1f6174ef4dc69f6ecfc86f28bae13feb524efba81379e
-
SSDEEP
48:a7Q2voyT+Bt5a9gyGTabXkdXoo80ML/wCz1SWfuc9dT/1DIpfe2dkKZSVhokaUIn:qT+ZKHzUXR80MDwChSsThIpfZLtUIn
Malware Config
Signatures
Files
-
df09c3ccc09e6a7ad4daa04fdfb778dbf6a06c791a1f694724c8ed527e2bce15.dll windows x86
b1739664e08d6f9c7ad5fbd4058e1368
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
CreateFileW
VirtualAlloc
SetEnvironmentVariableA
ReadFile
shell32
ShellExecuteA
ShellExecuteW
msvcrt
free
_initterm
malloc
_adjust_fdiv
Exports
Exports
Sections
.text Size: 1024B - Virtual size: 576B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 512B - Virtual size: 497B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 576B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 512B - Virtual size: 136B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ