mydllmain
Static task
static1
Behavioral task
behavioral1
Sample
861911e953e6fd0a015b3a91a7528a388a535c83f4b9a5cf7366b8209d2f00c3.dll
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
861911e953e6fd0a015b3a91a7528a388a535c83f4b9a5cf7366b8209d2f00c3.dll
Resource
win10v2004-20240802-en
General
-
Target
861911e953e6fd0a015b3a91a7528a388a535c83f4b9a5cf7366b8209d2f00c3.dll
-
Size
144KB
-
MD5
b14ef85a60ac71c669cc960bdf580144
-
SHA1
08906644b0ef1ee6478c45a6e0dd28533a9efc29
-
SHA256
861911e953e6fd0a015b3a91a7528a388a535c83f4b9a5cf7366b8209d2f00c3
-
SHA512
568fd5856c2e3801d59d094429243b6e1649d3b519f8cad0feab2c6752d4158e30d305fe06a651788d7f4420d43886f5dfb4fb43da605f0a718711cb099059e9
-
SSDEEP
3072:X3ri+nr4ciRGSuaHUCO25obTBhH5P1KCJN6hkf1GYn3:X3rv2RGPwUC5o3H5PVLln3
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 861911e953e6fd0a015b3a91a7528a388a535c83f4b9a5cf7366b8209d2f00c3.dll
Files
-
861911e953e6fd0a015b3a91a7528a388a535c83f4b9a5cf7366b8209d2f00c3.dll.dll windows:6 windows x86 arch:x86
2634f378ea222ed85ede1cf7f9951bae
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Imports
ole32
CoCreateInstance
CoUninitialize
CoInitialize
oleaut32
VariantClear
VariantInit
SysFreeString
SysAllocString
kernel32
FreeLibrary
WriteConsoleW
SetEndOfFile
HeapReAlloc
HeapSize
CreateFileW
FlushFileBuffers
GetStringTypeW
SetStdHandle
GetProcessHeap
ExitProcess
ExpandEnvironmentStringsW
TerminateProcess
Sleep
CloseHandle
GetProcAddress
CreateProcessW
GetModuleHandleW
CopyFileW
GetEnvironmentVariableW
LocalFree
GetLastError
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
FreeEnvironmentStringsW
RtlUnwind
RaiseException
InterlockedFlushSList
SetLastError
EncodePointer
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
DecodePointer
LoadLibraryExW
ReadFile
MoveFileExW
GetModuleHandleExW
GetModuleFileNameW
SetFilePointerEx
GetConsoleMode
ReadConsoleW
GetStdHandle
GetFileType
HeapFree
HeapAlloc
LCMapStringW
WriteFile
GetConsoleOutputCP
GetFileSizeEx
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetCommandLineA
GetCommandLineW
MultiByteToWideChar
WideCharToMultiByte
GetEnvironmentStringsW
Exports
Exports
Sections
.text Size: 103KB - Virtual size: 102KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 32KB - Virtual size: 31KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 3KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 432B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 5KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ