crys
Static task
static1
Behavioral task
behavioral1
Sample
5b09085e145864bf9250377b0288a85c9bebc6d7520fb4b7bb1653357fd231d1.dll
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
5b09085e145864bf9250377b0288a85c9bebc6d7520fb4b7bb1653357fd231d1.dll
Resource
win10v2004-20240412-en
General
-
Target
5b09085e145864bf9250377b0288a85c9bebc6d7520fb4b7bb1653357fd231d1
-
Size
4KB
-
MD5
d6494266504ed04b78f95360f1fdf8d1
-
SHA1
6c4ca48c737e1337004c1479135cd25abd2456cd
-
SHA256
5b09085e145864bf9250377b0288a85c9bebc6d7520fb4b7bb1653357fd231d1
-
SHA512
0f9bfa02e1b61385c7bf905eb3727d179378be1e59746cf5125dcb378205d4d5447dbeb3cf8c48fd9c0a9a751f08b6f12ec4da966898845851b1fd63c67d07f1
-
SSDEEP
24:e1GSYL3CeLA9/kPVCRVtc44MnXz+iM2u8kypgyXwVQwA3HdQzRafOesViNyEiFJg:SKLA9oyTnXz+ihZjutafH6i0EijA0U
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 5b09085e145864bf9250377b0288a85c9bebc6d7520fb4b7bb1653357fd231d1
Files
-
5b09085e145864bf9250377b0288a85c9bebc6d7520fb4b7bb1653357fd231d1.dll windows:5 windows x86 arch:x86
e97a70102cce77bfe0dc571cb46a4352
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Imports
kernel32
CreateFileW
VirtualAlloc
ReadFile
user32
MessageBoxA
shell32
ShellExecuteW
msvcrt
_adjust_fdiv
free
_initterm
malloc
Exports
Exports
Sections
.text Size: 1024B - Virtual size: 558B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 512B - Virtual size: 486B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 576B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 512B - Virtual size: 132B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ