del
gdel
gdll
gmod
pmod
sdll
wdll
Behavioral task
behavioral1
Sample
643e6e51e42a4274005b853efc80ad54e8f6c8aa113cf415fb8bdebcc7399b84.dll
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
643e6e51e42a4274005b853efc80ad54e8f6c8aa113cf415fb8bdebcc7399b84.dll
Resource
win10v2004-20240419-en
Target
643e6e51e42a4274005b853efc80ad54e8f6c8aa113cf415fb8bdebcc7399b84.dll
Size
142KB
MD5
a23fe0cd95fd358590d2bb681d277f9e
SHA1
e48876d7beffd78e9d877892b29f35a45d28b159
SHA256
643e6e51e42a4274005b853efc80ad54e8f6c8aa113cf415fb8bdebcc7399b84
SHA512
ffd2762b49e26e4072a15d30de4f5eefe4843c8bb987dbcf2a617964f083da790b7fb958a60c46ad967c54dbd884c121b67e49e2bfe4bfba42431156c7b50a1d
SSDEEP
3072:trPn1hcH98P67PBH2G3gFoh3H6J1vVjgQp3RpM1dpbQrQymzUOMgInmwuzqy/FEk:trP1hG98P67PNV3gih3H6J1VjgQp3RpO
blackmatter
1.0
resource | yara_rule |
---|---|
sample | family_lockbit |
Checks for missing Authenticode signature.
resource |
---|
643e6e51e42a4274005b853efc80ad54e8f6c8aa113cf415fb8bdebcc7399b84.dll |
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
SetPixel
SetDCBrushColor
GetTextColor
GetPixel
CreateFontW
GetDlgItemTextW
GetWindowTextW
IsDlgButtonChecked
LoadImageW
LoadMenuW
EndDialog
DialogBoxParamW
DefWindowProcW
GetClassNameW
GetCommandLineW
SetLastError
LoadLibraryExA
GetTickCount
GetProcAddress
GetModuleHandleW
FreeLibrary
FormatMessageW
GetFileAttributesW
del
gdel
gdll
gmod
pmod
sdll
wdll
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ