b6edd3f869bf79511fc57dbf1ba6d652e59f2cf515bcd7e1ab10c3f81738d6d9 | Triage

Submit
Reports

Overview

overview

3

Static

static

b6edd3f869...d9.dll

windows7-x64

3

b6edd3f869...d9.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

b6edd3f869bf79511fc57dbf1ba6d652e59f2cf515bcd7e1ab10c3f81738d6d9.dll

Resource

win7-20221111-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

b6edd3f869bf79511fc57dbf1ba6d652e59f2cf515bcd7e1ab10c3f81738d6d9.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

b6edd3f869bf79511fc57dbf1ba6d652e59f2cf515bcd7e1ab10c3f81738d6d9
Size

24KB
MD5

43eaa9b311254dce2f1a736d558a90f9
SHA1

2b066ac70a323ab30fec79fb2c73fae329d1ecfa
SHA256

b6edd3f869bf79511fc57dbf1ba6d652e59f2cf515bcd7e1ab10c3f81738d6d9
SHA512

137143e02ed2408d2ffcf1ae30aaba57b83c02e3b19ab2425e52f2b0290f857260ec8b852fc475d5ca3e00c6c04b89934a561b06ef0a7289c3adf3fafebfcb4b
SSDEEP

192:+ydSUaFhQDhE7JJxicuBBQ6PRQkjZad+GTSR42Zu:+dbFhQDqMcuBBQARQkdad+GeGu

Score

N/A

Malware Config

Signatures

Files

b6edd3f869bf79511fc57dbf1ba6d652e59f2cf515bcd7e1ab10c3f81738d6d9
.dll windows x86

9a2370a9aec449dcadbad24f1d08043c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenA
GetCurrentDirectoryA
TerminateProcess
GetCurrentProcess
Sleep
VirtualProtect
lstrcatA
CloseHandle
CreateThread
GetModuleFileNameA

user32

SetTimer
wsprintfA
CallNextHookEx
SetWindowsHookExA
UnhookWindowsHookEx
KillTimer

wininet

InternetReadFile
InternetOpenUrlA
InternetOpenA
InternetCloseHandle

ws2_32

gethostname

msvcrt

fread
fclose
fputs
fopen
strrchr
strncpy
strlen
free
_initterm
malloc
_adjust_fdiv

ntdll

_strlwr
_itoa

Exports

Exports

ServiceRouteEx
StartServiceEx
StopServiceEx

Sections

.text
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 530B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy