Static task
static1
General
-
Target
vcruntime140_1.dll
-
Size
8KB
-
MD5
f38bbb2dcea08be0ae9e8c4447e9cd58
-
SHA1
92a97c5c1e9699a2b5cb6c8be3a87e78e7874ffa
-
SHA256
a9d61d9fcee0d83656757eb36a8586de44d1e4f47bebd13afdbd474a47b82209
-
SHA512
9e92737f3e2a6468a01ab938caa296164f2d8b8739664f5cadd6b7fd9a05ee0bb4126235672dbf0bdda7823017ba1b3b2f4886763dd9eb7fe496392ecea5c38f
-
SSDEEP
96:diVUHd9dOK4TkTRfeir+hizHs1ds14ge8DdVilNyTLxiyhi5G2Kt4t2Hv3:diuXdOtsRZzHS8dVHDc5G7t4tCv3
Malware Config
Signatures
Files
-
vcruntime140_1.dll.dll windows:6 windows x64 arch:x64
43f0d00640b4d8e643c20e225b7862e3
Code Sign
5d:cf:24:38:e8:d7:a4:5d:b2:fe:5f:82:fc:86:ed:32Certificate
IssuerCN=R2RCANot Before31-12-2020 15:00Not After30-12-2099 15:00SubjectCN=R2R,O=R2R,C=JP99:89:a9:f9:2f:b7:0e:95:03:3d:d6:9c:a9:76:7f:40:89:2b:51:93:b8:a4:da:5a:9d:80:4c:b7:8e:52:33:f8:cb:17:16:11:f8:81:61:d8:5d:ed:b2:d7:4c:04:db:2d:63:dd:03:29:91:bd:af:00:58:86:ed:7f:92:46:3b:e9Signer
Actual PE Digest99:89:a9:f9:2f:b7:0e:95:03:3d:d6:9c:a9:76:7f:40:89:2b:51:93:b8:a4:da:5a:9d:80:4c:b7:8e:52:33:f8:cb:17:16:11:f8:81:61:d8:5d:ed:b2:d7:4c:04:db:2d:63:dd:03:29:91:bd:af:00:58:86:ed:7f:92:46:3b:e9Digest Algorithmsha512PE Digest MatchestrueHeaders
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
Imports
shlwapi
PathStripPathW
kernel32
GetModuleHandleA
lstrcatW
GetSystemDirectoryW
VirtualProtect
FreeLibrary
GetModuleFileNameW
LoadLibraryW
GetProcAddress
lstrcmpW
Exports
Exports
__CxxFrameHandler4
__NLG_Dispatch2
__NLG_Return2
Sections
.text Size: 1024B - Virtual size: 619B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 104B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 512B - Virtual size: 36B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ