f106cc0d49d3407bac0b13c47391264c47e81ef09f64fa696e4d77b71abdac2c | Triage

Submit
Reports

Overview

overview

6

Static

static

f106cc0d49...2c.dll

windows7-x64

6

f106cc0d49...2c.dll

windows10-2004-x64

6

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

f106cc0d49d3407bac0b13c47391264c47e81ef09f64fa696e4d77b71abdac2c.dll

Resource

win7-20220812-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

f106cc0d49d3407bac0b13c47391264c47e81ef09f64fa696e4d77b71abdac2c.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

4 signatures

150 seconds

General

Target

f106cc0d49d3407bac0b13c47391264c47e81ef09f64fa696e4d77b71abdac2c
Size

183KB
MD5

3e1cb1a035492674c37abc4af7a98ee9
SHA1

00a18bff15b90b3d8d6d596118b80011aba2bff6
SHA256

f106cc0d49d3407bac0b13c47391264c47e81ef09f64fa696e4d77b71abdac2c
SHA512

1f9312ec4db3fb96151f04a3dcc6ecb23a919d8ba1869aa7770323874f99ae9b0ce9b66c4fe860b1504e7373d952c187a0f30327dae824bafdd478f224bb7119
SSDEEP

3072:1bSXp8haDgeheJtRRV168vbsgP3j5/uE0I8du497P5D/lJ7mDGc11ghdtWWGPKf:1WmhaKJRn6ggsWEA1LD77BjhGWz

Score

N/A

Malware Config

Signatures

Files

f106cc0d49d3407bac0b13c47391264c47e81ef09f64fa696e4d77b71abdac2c
.dll windows x86

1be189fa5235123f337cdd355a4bcdae

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CreateFileMappingA
DeviceIoControl
EnterCriticalSection
ExitProcess
FreeEnvironmentStringsW
GetACP
GetCommandLineA
GetCurrentThreadId
GetDriveTypeA
GetModuleFileNameA
GetModuleHandleA
GetOEMCP
GetProcAddress
GetStartupInfoA
GetTimeZoneInformation
GetVersionExA
GlobalLock
HeapAlloc
HeapCreate
HeapReAlloc
LCMapStringA
LoadLibraryA
LocalAlloc
MapViewOfFile
MultiByteToWideChar
QueryPerformanceCounter
ReadFile
RtlUnwind
SetHandleCount
SetLastError
SetUnhandledExceptionFilter
TerminateProcess
TlsAlloc
lstrcmpA

user32

IsWindowVisible
EndDialog
DrawIconEx

ole32

CoCreateInstance
CoTaskMemAlloc
CoTaskMemFree
StringFromGUID2

advapi32

RegEnumKeyExW
GetServiceKeyNameW

Exports

Exports

HostGetFlags
Malloc

Sections

.text
Size: 117KB - Virtual size: 216KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy