fb01171b197ca6cd7b9664e30e615c8b27f78d7dfaef96e779d5331005add062 | Triage

Submit
Reports

Overview

overview

1

Static

static

fb01171b19...62.dll

windows7-x64

1

fb01171b19...62.dll

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

fb01171b197ca6cd7b9664e30e615c8b27f78d7dfaef96e779d5331005add062.dll

Resource

win7-20221111-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

fb01171b197ca6cd7b9664e30e615c8b27f78d7dfaef96e779d5331005add062.dll

Resource

win10v2004-20221111-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

fb01171b197ca6cd7b9664e30e615c8b27f78d7dfaef96e779d5331005add062
Size

32KB
MD5

41519f6ce4bd8afeb0a77692b625aa05
SHA1

6e9efb8910acc8df0642ef55efd17f7d5764065f
SHA256

fb01171b197ca6cd7b9664e30e615c8b27f78d7dfaef96e779d5331005add062
SHA512

dd2baad79604acc9ff145b8e84c0eb5f3c0c09781e7ae9e8ab37743f704bdcb2800dc7a934534f76aa3ad36e6b4152335ba723f522dc0991a8bfd1117b3a00ea
SSDEEP

192:g96Ki8WpOFuNlDAtXOdlzps/VeWgs/cGOsSvSZhRWMQLQy8TMV:+VFuNlDCXWz2/VeFZzvSZfW1Z84

Score

N/A

Malware Config

Signatures

Files

fb01171b197ca6cd7b9664e30e615c8b27f78d7dfaef96e779d5331005add062
.dll windows x86

4f6446f03be1f8db3c8bb38d5a58ed68

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcessId
lstrcpyA
GetWindowsDirectoryA
GetProcAddress
Sleep
CreateFileA
lstrcatA
ReadFile
GetModuleHandleA
LocalAlloc
GetModuleFileNameA
CreateThread
GetPrivateProfileStringA
IsBadReadPtr
Module32First
Module32Next
lstrlenA
ReadProcessMemory
OpenProcess
VirtualProtectEx
VirtualProtect
WriteProcessMemory
lstrcmpA
CreateToolhelp32Snapshot
CloseHandle

user32

wsprintfA

advapi32

CryptAcquireContextA
CryptCreateHash
CryptHashData
CryptGetHashParam
CryptDestroyHash
CryptReleaseContext

shlwapi

StrStrIA

wininet

InternetOpenA
InternetOpenUrlA
InternetReadFile
InternetCloseHandle

msvcrt

strncat
strstr
??2@YAPAXI@Z
??3@YAXPAX@Z
_purecall
strrchr
atoi
_except_handler3
isprint

Sections

.bss
Size: - Virtual size: 16KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

shard
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy