Static task
static1
General
-
Target
CLibrary.dll
-
Size
59.3MB
-
MD5
e4b3630643a2c63c7b68d6c5f16e3ad3
-
SHA1
500a0f92827ea449c2cffcb64a8fd012462b4ab1
-
SHA256
602ef4e4bdcc10ccc5d71389e770849b3bb69d71b561d13f162acf24769d6f66
-
SHA512
2509e5adc2f7550d5df8d9025f5497e532243305653e0d148b4b2339b7465100f35822de1497f08dbd64c9e24d564fd270a24ab86a0fde554d1d8a914d38e6c7
-
SSDEEP
1572864:xenVH3huNkVVFBFx9qNxT3AJti3uYuWliCMx1vZS5lWeFB3o:k9cmvz9qN9ei37lipS5lx3
Malware Config
Signatures
Files
-
CLibrary.dll.dll windows x64
6611ee2a03e4c9d58d308dd7aa98f20c
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Imports
ntdll
RtlLookupFunctionEntry
shlwapi
StrCmpLogicalW
kernel32
lstrcmpiW
GetVersion
LocalAlloc
LocalFree
GetModuleFileNameW
ExitProcess
LoadLibraryA
GetModuleHandleA
GetProcAddress
user32
GetClipboardData
CharUpperBuffW
gdi32
GetDeviceCaps
advapi32
RegGetValueW
shell32
ShellExecuteA
msvcp140
?_Throw_C_error@std@@YAXH@Z
msvcp140_codecvt_ids
?id@?$codecvt@_SDU_Mbstatet@@@std@@2V0locale@2@A
imm32
ImmReleaseContext
d3dcompiler_47
D3DCompile
d3d11
D3D11CreateDeviceAndSwapChain
vcruntime140_1
__CxxFrameHandler4
vcruntime140
__RTDynamicCast
api-ms-win-crt-runtime-l1-1-0
_execute_onexit_table
api-ms-win-crt-locale-l1-1-0
___lc_codepage_func
api-ms-win-crt-time-l1-1-0
_time64
api-ms-win-crt-heap-l1-1-0
malloc
api-ms-win-crt-string-l1-1-0
strcoll
api-ms-win-crt-math-l1-1-0
_ldclass
api-ms-win-crt-filesystem-l1-1-0
_lock_file
api-ms-win-crt-stdio-l1-1-0
ungetc
api-ms-win-crt-convert-l1-1-0
strtoll
api-ms-win-crt-utility-l1-1-0
qsort
api-ms-win-crt-multibyte-l1-1-0
_mbsicmp
Sections
.text Size: - Virtual size: 2.6MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: - Virtual size: 1.1MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: - Virtual size: 213KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: - Virtual size: 101KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.detourc Size: - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.detourd Size: - Virtual size: 24B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.taigaBa Size: - Virtual size: 67.6MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.taigaBa Size: 5KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.taigaBa Size: 59.3MB - Virtual size: 59.3MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 212B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 512B - Virtual size: 233B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ