9fc1c78d481c1dc96ff9ec3f31e47d4a3ba54a10339342c8889ec4057a428578 | Triage

Submit
Reports

Overview

overview

1

Static

static

9fc1c78d48...78.dll

windows7-x64

1

9fc1c78d48...78.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

9fc1c78d481c1dc96ff9ec3f31e47d4a3ba54a10339342c8889ec4057a428578.dll

Resource

win7-20221111-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

9fc1c78d481c1dc96ff9ec3f31e47d4a3ba54a10339342c8889ec4057a428578.dll

Resource

win10v2004-20221111-en

windows10-2004-x64

3 signatures

150 seconds

General

Target

9fc1c78d481c1dc96ff9ec3f31e47d4a3ba54a10339342c8889ec4057a428578
Size

32KB
MD5

4ff6158319692f60c8c8e885c224ddc0
SHA1

771e2f6e5e241429d6e2ecbfa9cea7985e5b9d6c
SHA256

9fc1c78d481c1dc96ff9ec3f31e47d4a3ba54a10339342c8889ec4057a428578
SHA512

dc4f7d12d71f0577bf7689ff0ffca2a41f77ee4bffc5a5c68638e730dc6573823d166370c255bf0d98aee4c738767b1b1510bff3a2a0cfd2fb649e6e2878df60
SSDEEP

384:wFqieZCCUcKO+zld5r5yh7LgEnJbsPwsK3l51Xha+/al5:PieZxUVO+BlyRvJQPwsK3l51X8+/2

Score

N/A

Malware Config

Signatures

Files

9fc1c78d481c1dc96ff9ec3f31e47d4a3ba54a10339342c8889ec4057a428578
.dll regsvr32 windows x86

92e00c4b539a88e18c5668a03e7c14b3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameA
GetSystemDirectoryA
CloseHandle
CreateThread
DeleteFileA
GetWindowsDirectoryA
WinExec
GetLocalTime
GetProcAddress
LoadLibraryA
InterlockedIncrement

user32

UnhookWindowsHookEx
FindWindowExA
GetMessageA
TranslateMessage
DispatchMessageA
CallNextHookEx
RegisterClassExA
KillTimer
SetTimer
PostMessageA
DefWindowProcA
CreateWindowExA
ShowWindow
SetWindowsHookExA

advapi32

RegQueryValueExA
RegOpenKeyExA
RegSetValueExA
RegCreateKeyExA
RegCloseKey

msvcrt

_initterm
free
strrchr
__CxxFrameHandler
??2@YAPAXI@Z
strchr
fopen
_stricmp
fwrite
malloc
_adjust_fdiv
_strlwr
??3@YAXPAX@Z
sprintf
strstr
_access
fclose

Exports

Exports

DllGetClassObject
DllRegisterServer
DllUnregisterServer
HohCNbNvocb

Sections

.text
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 796B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy