Static task
static1
Behavioral task
behavioral1
Sample
cdb6bf900c4172b3eaf7bb562087d633d23cde43df41f54863c7eedf71896eaa.dll
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
cdb6bf900c4172b3eaf7bb562087d633d23cde43df41f54863c7eedf71896eaa.dll
Resource
win10v2004-20240412-en
General
-
Target
cdb6bf900c4172b3eaf7bb562087d633d23cde43df41f54863c7eedf71896eaa
-
Size
208KB
-
MD5
9c97fe5928f449db6e0495acbb1ec681
-
SHA1
a064980293b9ff9df394ab44907e34cd2f9c3937
-
SHA256
cdb6bf900c4172b3eaf7bb562087d633d23cde43df41f54863c7eedf71896eaa
-
SHA512
7fe89aafed5d3c36fb2ba5ce68c0b47bd571c1f332e49867611d6317fdb2c744ac56a0fae9f73707753a50721e28059412d578bdcabdc0533d478f1165126349
-
SSDEEP
1536:gD6chhrqEFjT+hrZXNhRpAH1dwIM24WHn9NJPJsWqzY:BchhrqEAh0dwIvdNJPJF8Y
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource cdb6bf900c4172b3eaf7bb562087d633d23cde43df41f54863c7eedf71896eaa
Files
-
cdb6bf900c4172b3eaf7bb562087d633d23cde43df41f54863c7eedf71896eaa.dll windows:4 windows x64 arch:x64
6c8408bb5d7d5a5b75b9314f94e68763
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL
Imports
kernel32
DisableThreadLibraryCalls
Sections
.text Size: 4KB - Virtual size: 112B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 4KB - Virtual size: 64B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.pdata Size: 4KB - Virtual size: 24B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.xdata Size: 4KB - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.edata Size: 4KB - Virtual size: 106B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.idata Size: 4KB - Virtual size: 120B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 180KB - Virtual size: 177KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE