cb8b16848f0f02843fb1ea5a2abf5df7728777ab8f281a4c39786c77f9f5743d | Triage

Submit
Reports

Overview

overview

1

Static

static

cb8b16848f...3d.dll

windows7-x64

1

cb8b16848f...3d.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

cb8b16848f0f02843fb1ea5a2abf5df7728777ab8f281a4c39786c77f9f5743d.dll

Resource

win7-20221111-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

cb8b16848f0f02843fb1ea5a2abf5df7728777ab8f281a4c39786c77f9f5743d.dll

Resource

win10v2004-20221111-en

windows10-2004-x64

3 signatures

150 seconds

General

Target

cb8b16848f0f02843fb1ea5a2abf5df7728777ab8f281a4c39786c77f9f5743d
Size

32KB
MD5

8a487e18c4d901ecb13b122e65679df6
SHA1

ef4263367e6c60f0acbc7198291653e34e07cc38
SHA256

cb8b16848f0f02843fb1ea5a2abf5df7728777ab8f281a4c39786c77f9f5743d
SHA512

39c843e97e2bd0fb98286321263f7a0cb97fb0eb045d2aa81dc8e5571589450a9c66f3995dddbdfe94d07cefe3f3977d442fdf5bc18511091812f1b63ea42c68
SSDEEP

768:MAk0a9w12h63JlhCQ/zFt+yJFp1Fg4cwjXm:MASF63JLl+uFnqwjX

Score

N/A

Malware Config

Signatures

Files

cb8b16848f0f02843fb1ea5a2abf5df7728777ab8f281a4c39786c77f9f5743d
.dll regsvr32 windows x86

a3aa06eabb26dd4318cb5779cc405ef6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CreateThread
LoadLibraryA
DeleteFileA
GetProcAddress
GetLocalTime
InterlockedIncrement
GetWindowsDirectoryA
GetSystemDirectoryA
WinExec
GetModuleFileNameA

user32

UnhookWindowsHookEx
CreateWindowExA
ShowWindow
GetMessageA
TranslateMessage
DispatchMessageA
RegisterClassExA
SetWindowsHookExA
CallNextHookEx
FindWindowExA
SetTimer
KillTimer
PostMessageA
DefWindowProcA

advapi32

RegQueryValueExA
RegOpenKeyExA
RegSetValueExA
RegCreateKeyExA
RegCloseKey

shell32

SHGetSpecialFolderPathA

msvcrt

_initterm
free
__CxxFrameHandler
strstr
_access
strrchr
??2@YAPAXI@Z
??3@YAXPAX@Z
_strlwr
malloc
_adjust_fdiv
_stricmp
strchr
fopen
sprintf
fclose
fwrite

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 780B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy