Protein[.]4[.]2[.]dll | Triage

Submit
Reports

Overview

overview

3

Static

static

1

Protein.4.2.dll

windows7-x64

3

Protein.4.2.dll

windows10-2004-x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

Protein.4.2.dll

Resource

win7-20240215-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

Protein.4.2.dll

Resource

win10v2004-20240226-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

Protein.4.2.dll
Size

5KB
MD5

ee5a2cbef1e99a5ab1102fcb84d0fda1
SHA1

b0873834bb1e5773daf6c67ac6095e453909829c
SHA256

57282b36959ed21586025684fecbef94ccfc9b779d4d2b5432a860b22ba55df5
SHA512

f5a666697d368e3a78f3c1a1b7df26b5f4a6fe89e714ed04ef41c4270095ce508dfac74a34ffbd780d4f7545b39b9eee17b222aea83e7799f1ec7394f29293a8
SSDEEP

96:9DwcNHP12D+/9LmH6kjhiyhiO2Kt4t2HvPxT3Ag:9Dwcdp9LmH6QrcO7t4tCvPxTwg

Score

1^/10

Malware Config

Signatures

Files

Protein.4.2.dll
.dll windows:6 windows x86 arch:x86

5cc27be4cdbe125b5a1127445d2fe075

Code Sign

5d:cf:24:38:e8:d7:a4:5d:b2:fe:5f:82:fc:86:ed:32
Certificate

Issuer

CN=R2RCA

Not Before

31-12-2020 15:00

Not After

30-12-2099 15:00

Subject

CN=R2R,O=R2R,C=JP

c6:2f:02:ab:d6:6c:ce:36:13:4b:0d:b2:06:1a:40:cf:0e:f4:5f:b6:db:a7:b8:8f:38:cd:ef:2d:20:26:6b:c4:65:dd:90:68:9a:57:74:02:4e:c8:05:1a:97:d9:58:76:7b:10:db:42:77:08:d4:54:16:6c:2e:cb:06:03:f3:fd
Signer

Actual PE Digest

c6:2f:02:ab:d6:6c:ce:36:13:4b:0d:b2:06:1a:40:cf:0e:f4:5f:b6:db:a7:b8:8f:38:cd:ef:2d:20:26:6b:c4:65:dd:90:68:9a:57:74:02:4e:c8:05:1a:97:d9:58:76:7b:10:db:42:77:08:d4:54:16:6c:2e:cb:06:03:f3:fd

Digest Algorithm

sha512

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcpyW
lstrlenW

advapi32

RegOpenKeyExW
RegQueryValueExW
RegCloseKey

Exports

Exports

ProteinDLL_Hibernate

Sections

.text
Size: 1024B - Virtual size: 527B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 754B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 704B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 228B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy