0ca834aecd8a27eadca15f7054f33d5a[.]dll[.]exe | Triage

Submit
Reports

Overview

overview

Static

static

1

0ca834aecd...5a.dll

windows7-x64

0ca834aecd...5a.dll

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

0ca834aecd8a27eadca15f7054f33d5a.dll

Resource

win7-20230220-en

systembc trojan

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

0ca834aecd8a27eadca15f7054f33d5a.dll

Resource

win10v2004-20230220-en

systembc trojan

windows10-2004-x64

3 signatures

150 seconds

General

Target

0ca834aecd8a27eadca15f7054f33d5a.dll.exe
Size

6.0MB
MD5

0ca834aecd8a27eadca15f7054f33d5a
SHA1

0fab64541262927cbf58d8a1755717a4ad81bf25
SHA256

da6f4ed0f611021ae9565d8514875b627c031a44d5ca7d25bdc290c8a10aee4e
SHA512

2ff6162aa7339ee0faedbb4644caec4125477568b1825b2f01e923a1f7670462abc3d2dedc6750a28de09f1eefb63f86eb9ba0932361e302c4b4b1d79ce003e3
SSDEEP

98304:7uoS3DPg0N45/W/0Yg8UBEgorYH0gg22fFOAJqYn5hD457KN4z0u:7T+gE4JrY2ByYHoFO+nDju0u

Score

1^/10

Malware Config

Signatures

Files

0ca834aecd8a27eadca15f7054f33d5a.dll.exe
.dll windows x64

784b916b7599dde24a7c68feeb6088ab

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

user32

wsprintfA
CharUpperBuffW

ws2_32

getaddrinfo

advapi32

GetTokenInformation

kernel32

WriteFile
GetSystemTimeAsFileTime
LocalAlloc
LocalFree
GetModuleFileNameW
ExitProcess
LoadLibraryA
GetModuleHandleA
GetProcAddress

secur32

GetUserNameExA

ole32

CoCreateInstance

Exports

Exports

rundll

Sections

c0cp#&Te
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

\+:kXe(=
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

s$!IXF;g
Size: - Virtual size: 595B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

VqPL*$HS
Size: - Virtual size: 432B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

(eaziji&
Size: - Virtual size: 3.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

:E$Ig''^
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

lHuK9[f=
Size: 6.0MB - Virtual size: 6.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

O3E2].uN
Size: 512B - Virtual size: 144B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy