b1424844e7b32594e1955da5ad5849cc79c57282007c93a6a9d0e475057d0c8f | Triage

Submit
Reports

Overview

overview

3

Static

static

winprofile

windows7-x64

1

winprofile

windows10-1703-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

b1424844e7b32594e1955da5ad5849cc79c57282007c93a6a9d0e475057d0c8f.dll

Resource

win7-20221111-en

windows7-x64

2 signatures

300 seconds

Behavioral task

behavioral2

Sample

b1424844e7b32594e1955da5ad5849cc79c57282007c93a6a9d0e475057d0c8f.dll

Resource

win10-20220901-en

windows10-1703-x64

3 signatures

300 seconds

General

Target

b1424844e7b32594e1955da5ad5849cc79c57282007c93a6a9d0e475057d0c8f
Size

1.6MB
MD5

f71ae13933c5774267a69d335d9844d0
SHA1

4a20d3eed2043d9eedd1284ab8688b2532efbf49
SHA256

b1424844e7b32594e1955da5ad5849cc79c57282007c93a6a9d0e475057d0c8f
SHA512

884f9305863b11cad3358c6315f503b964058c8629d3e59709ef9b34339036990f91126dea2b1af6c4ce4d4a5fdf51955e061cb0f8e87d29effd2f2d25ce996f
SSDEEP

24576:cc5osDqfENF0nJjCCgamsNkQQGm5v9RtEw9nlm68WinfHPP:cYdQENF0nJjC9+kQRSh3z8WCHP

Score

N/A

Malware Config

Signatures

Files

b1424844e7b32594e1955da5ad5849cc79c57282007c93a6a9d0e475057d0c8f
.dll windows x86

a2833106949ae6e20c40ed0128f9df4b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
VirtualAlloc
VirtualFree

Exports

Exports

Entry

Sections

.text
Size: - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 112KB - Virtual size: 116KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pelock
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy