26041a4874359c3774899bca8616d17a772b978456f867824b29f3db27deed6e | Triage

Submit
Reports

Overview

overview

Static

static

26041a4874...6e.exe

windows7_x64

26041a4874...6e.exe

windows10-2004_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

26041a4874359c3774899bca8616d17a772b978456f867824b29f3db27deed6e.exe

Resource

win7-20220414-en

ramnit banker spyware stealer trojan upx worm

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

26041a4874359c3774899bca8616d17a772b978456f867824b29f3db27deed6e.exe

Resource

win10v2004-20220414-en

ramnit banker spyware stealer trojan upx worm

windows10-2004_x64

0 signatures

0 seconds

General

Target

26041a4874359c3774899bca8616d17a772b978456f867824b29f3db27deed6e
Size

195KB
MD5

e186bf9163d81e47298ad97e2e1a6665
SHA1

9b34e5aeec8ebcb9e2d04e40dc4023c5cf326290
SHA256

26041a4874359c3774899bca8616d17a772b978456f867824b29f3db27deed6e
SHA512

f2d6c8966db82caf2d9b27b11935d0f46a7e847ddd11721a69dc39e4583e3776bf9b451c15e7d4fd48aa10c407d7658be794892f956cb9c0b04ed25e2df0cc6e
SSDEEP

6144:qjKzvyIs/eZkod5+zanvDLXypN0lu+Hzi8qpAjT:E5fqf4aXyN3ei8qej

Score

N/A

Malware Config

Signatures

Files

26041a4874359c3774899bca8616d17a772b978456f867824b29f3db27deed6e
.exe windows x86

dc73a9bd8de0fd640549c85ac4089b87

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteFileA
ExitProcess
FindResourceA
FreeLibrary
GetModuleHandleA
GetProcAddress
GetTempPathA
LoadLibraryA
LoadResource
RtlMoveMemory
SizeofResource
VirtualAlloc
lstrcatA
CloseHandle
CreateFileA
FlushFileBuffers
WriteFile

Sections

.text
Size: 512B - Virtual size: 502B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 472B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 52B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 136KB - Virtual size: 135KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 82B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 56KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy