daf28b691138d813d1606cf1d9a950d1955970e7ee1acddc53ff1600de8c48eb | Triage

Submit
Reports

Overview

overview

3

Static

static

daf28b6911...eb.dll

windows7-x64

3

daf28b6911...eb.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

daf28b691138d813d1606cf1d9a950d1955970e7ee1acddc53ff1600de8c48eb.dll

Resource

win7-20221111-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

daf28b691138d813d1606cf1d9a950d1955970e7ee1acddc53ff1600de8c48eb.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

daf28b691138d813d1606cf1d9a950d1955970e7ee1acddc53ff1600de8c48eb
Size

379KB
MD5

ffcbe6e1a16840b161bc16d586f52dbe
SHA1

052fdf9a751a0113a46f4cbb6f0fce573621b3c1
SHA256

daf28b691138d813d1606cf1d9a950d1955970e7ee1acddc53ff1600de8c48eb
SHA512

0953622ad16219e1b4a4c7afa97b1413acf437284663de5a4faba87b20466e4a8361c3c93e0545f5d9cbe5157943035682ffdc1847e705ddf70b1f531ea90917
SSDEEP

6144:/+UaQN4X4WuEAFgia9PdgWGv7u82zRxnMnE7MCcWlzra5UvDjXIAUul0lQwsPe:haQN4XcX/a9lgWGTufRxMfCcWlzrCUvy

Score

N/A

Malware Config

Signatures

Files

daf28b691138d813d1606cf1d9a950d1955970e7ee1acddc53ff1600de8c48eb
.dll windows x86

022c72f9288940fb0d83348b310236a3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCloseKey
RegOpenKeyExA
RegQueryValueExA
CryptDuplicateHash

kernel32

CloseHandle
CreateProcessA
DeleteCriticalSection
DeleteFiber
ExitProcess
FreeLibrary
GetACP
GetCommandLineA
GetCurrentProcessId
GetCurrentThreadId
GetEnvironmentVariableA
GetLastError
GetLocaleInfoA
GetModuleHandleA
GetProcAddress
GetProcessPriorityBoost
GetShortPathNameA
GetStartupInfoA
GetSystemTimeAsFileTime
GetThreadLocale
GetTickCount
GlobalCompact
LoadLibraryA
Module32First
PrepareTape
QueryPerformanceCounter
QueueUserAPC
VirtualAlloc
VirtualQueryEx
WaitForSingleObject
WideCharToMultiByte

ole32

StringFromCLSID
CoTaskMemFree

Exports

Exports

Component
Enable
GetImageInfoFromFileW
GetMarker
GetNextPageS
SourcePlayv
StartSaveRedirectMemory

Sections

.text
Size: 78KB - Virtual size: 78KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 160KB - Virtual size: 160KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 70KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy