04470492cdf836e1573c96a08b5a77975e3154eae50090932aa3b6405eeb4765[.]dll | Triage

Submit
Reports

Overview

overview

Static

static

1

04470492cd...65.dll

windows7-x64

04470492cd...65.dll

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

04470492cdf836e1573c96a08b5a77975e3154eae50090932aa3b6405eeb4765.dll

Resource

win7-20230220-en

dridex 40112 botnet evasion loader trojan

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

04470492cdf836e1573c96a08b5a77975e3154eae50090932aa3b6405eeb4765.dll

Resource

win10v2004-20230220-en

dridex 40112 botnet evasion loader trojan

windows10-2004-x64

4 signatures

150 seconds

General

Target

04470492cdf836e1573c96a08b5a77975e3154eae50090932aa3b6405eeb4765.dll
Size

158KB
MD5

6c3918f69235c7fef8e48d04106c93a0
SHA1

5d1807e6ddf88e1ccea39230c8ad7e8c10cc689e
SHA256

04470492cdf836e1573c96a08b5a77975e3154eae50090932aa3b6405eeb4765
SHA512

afa9ffb594b8a3e1e1674c9ce8d712ba867918b8fc4975a241f2ba760313422efebc0644dc1ee0d0cc2b42f017e76297da2dba7c2f04ca979edbafb64a5325a1
SSDEEP

3072:0A6cVUieJXfe5aL7FBMOJr7uC3IDaAunyw654/Q2uZAlDO:03J256FBMO93IuAiywi4Y2Z

Score

1^/10

Malware Config

Signatures

Files

04470492cdf836e1573c96a08b5a77975e3154eae50090932aa3b6405eeb4765.dll
.dll windows x86

835c0fbcc6459f6264f92edd519c6e5e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

OutputDebugStringA
LoadLibraryExA
CloseHandle
GetModuleHandleW
GetProfileSectionW
OpenSemaphoreW

ole32

CreateStreamOnHGlobal

advapi32

RegLoadAppKeyW

user32

TranslateMessage

opengl32

glVertex3f

Sections

.text
Size: 140KB - Virtual size: 139KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 5KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 832B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 324B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy