Static task
static1
Behavioral task
behavioral1
Sample
2057629e4af13fa951db4b9e43ef989df420f1e4bd080696e2fffc3cf12df3c7.dll
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
2057629e4af13fa951db4b9e43ef989df420f1e4bd080696e2fffc3cf12df3c7.dll
Resource
win10v2004-20240709-en
General
-
Target
2057629e4af13fa951db4b9e43ef989df420f1e4bd080696e2fffc3cf12df3c7.dll
-
Size
234KB
-
MD5
9e4fbebcc458c9c29d3d2bc8272b5b32
-
SHA1
6bfa6c1bd28b0fce8253dfdc2e82bb71a33e26f6
-
SHA256
2057629e4af13fa951db4b9e43ef989df420f1e4bd080696e2fffc3cf12df3c7
-
SHA512
9906097fe77c69a1e103e0fa214d90f3bd11280b74c0b535b34d79aad68f1a170674f93fcb522c9f2b0673fda86ca4f7fce48a7ea949ecefd8261f4be76784da
-
SSDEEP
6144:Ct7MFYXYBaA1Ba7JRO0jWg8m203oVd1cOv5EtFV5:CRRXYBaA/a7JRO0aM01Hq
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2057629e4af13fa951db4b9e43ef989df420f1e4bd080696e2fffc3cf12df3c7.dll
Files
-
2057629e4af13fa951db4b9e43ef989df420f1e4bd080696e2fffc3cf12df3c7.dll.dll windows:5 windows x86 arch:x86
be7df75d74c87e13bae90ee521450dd6
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NO_SEH
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP
IMAGE_FILE_NET_RUN_FROM_SWAP
IMAGE_FILE_DLL
Imports
kernel32
FreeLibrary
CompareFileTime
GetModuleHandleW
GetSystemTimeAsFileTime
GetProcAddress
GetCurrentThreadId
GetTickCount
lstrcpyW
lstrlenW
GetCurrentProcess
Sections
.text Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 1.0MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.init Size: 224KB - Virtual size: 222KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 1024B - Virtual size: 1020B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ