General
-
Target
tmp96E1.dll
-
Size
721KB
-
Sample
231206-w658gsgc9s
-
MD5
ff29edd54636011dc4c1c4bddb96041c
-
SHA1
de19e4bb427b9a2010a77e64b84204dbed76db16
-
SHA256
70b12617dbbaf60b6a169797cc016eda12b0b18766b6ae48b469b0aed3e73892
-
SHA512
bea4ba0e164c6f91760478888502694542366cc2bd0d7efbb8dcc029b501e8dd76e15a40175d7a4f096f12aa0baac1e9bb526595c21709ba243e876f8deb7ee8
-
SSDEEP
12288:K5IGPsCLbMhP8NDIPQzRNODZ63o2nMAEAW+MiyjPDdUYioDvgrlQGcMoRa9CuArc:KnPsQ67IzRNYZcE++dQoDvgW/MI2crW6
Static task
static1
Behavioral task
behavioral1
Sample
tmp96E1.dll
Resource
win7-20231023-en
Behavioral task
behavioral2
Sample
tmp96E1.dll
Resource
win10v2004-20231127-en
Malware Config
Targets
-
-
Target
tmp96E1.dll
-
Size
721KB
-
MD5
ff29edd54636011dc4c1c4bddb96041c
-
SHA1
de19e4bb427b9a2010a77e64b84204dbed76db16
-
SHA256
70b12617dbbaf60b6a169797cc016eda12b0b18766b6ae48b469b0aed3e73892
-
SHA512
bea4ba0e164c6f91760478888502694542366cc2bd0d7efbb8dcc029b501e8dd76e15a40175d7a4f096f12aa0baac1e9bb526595c21709ba243e876f8deb7ee8
-
SSDEEP
12288:K5IGPsCLbMhP8NDIPQzRNODZ63o2nMAEAW+MiyjPDdUYioDvgrlQGcMoRa9CuArc:KnPsQ67IzRNYZcE++dQoDvgW/MI2crW6
Score8/10-
Dave packer
Detects executable using a packer named 'Dave' by the community, based on a string at the end.
-
Suspicious use of SetThreadContext
-