ca203654a979bb29c5a9b4cf3586735be4167e0971fbf958fb337d17e6070555 | Triage

Submit
Reports

Overview

overview

1

Static

static

1

ca203654a9...55.dll

windows7-x64

1

ca203654a9...55.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

ca203654a979bb29c5a9b4cf3586735be4167e0971fbf958fb337d17e6070555.dll

Resource

win7-20220812-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

ca203654a979bb29c5a9b4cf3586735be4167e0971fbf958fb337d17e6070555.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

ca203654a979bb29c5a9b4cf3586735be4167e0971fbf958fb337d17e6070555
Size

1.0MB
MD5

c008ae0e6e90b7993e2bbd1fd990f48d
SHA1

c65f037687a074aaffd9ef57f3cc34ec01ce642f
SHA256

ca203654a979bb29c5a9b4cf3586735be4167e0971fbf958fb337d17e6070555
SHA512

0e9ab7d10b07cf1c8917df88d678f21c95a78f46ddd94ed6b3658bd661d27febb02035310269d75e0fd12529919de4453e467d942bcd59cedab3985440b9b62f
SSDEEP

12288:nAckaTN1cP/lwnqAREp71Da2JJqKd6E0fNP1pL4GCQzqiLmz4JE92dLIvaf7eD:n9kaEqnqARoNFaVHzbpLsp92dsv2

Score

1^/10

Malware Config

Signatures

Files

ca203654a979bb29c5a9b4cf3586735be4167e0971fbf958fb337d17e6070555
.dll windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

SetHook
get_canshu_dz

Sections

CODE
Size: 884KB - Virtual size: 883KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 12.8MB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 94B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 59KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 91KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy