5776efe08fd2b5847cafd084ed56e0457de02608e6c8e4e971c8e00cc3355fa8 | Triage

Submit
Reports

Overview

overview

Static

static

5776efe08f...a8.exe

windows7_x64

5776efe08f...a8.exe

windows10-2004_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

5776efe08fd2b5847cafd084ed56e0457de02608e6c8e4e971c8e00cc3355fa8.exe

Resource

win7-20220414-en

locky ransomware

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

5776efe08fd2b5847cafd084ed56e0457de02608e6c8e4e971c8e00cc3355fa8.exe

Resource

win10v2004-20220414-en

locky persistence ransomware

windows10-2004_x64

0 signatures

0 seconds

General

Target

5776efe08fd2b5847cafd084ed56e0457de02608e6c8e4e971c8e00cc3355fa8
Size

174KB
MD5

50bde00178dbc70e43d8e6156e9a1c0d
SHA1

26a7bc0b6fd83644b1df1f0378dec013026c4971
SHA256

5776efe08fd2b5847cafd084ed56e0457de02608e6c8e4e971c8e00cc3355fa8
SHA512

b7e98b367e977b914b182ddf182f88a7e8be35e8eaef2dea69f21027b7f7d7faa5913d01f71a1d4e89e0dfc6b4f0331bda824f776209213852575ec236c44bd5
SSDEEP

3072:gZ24wyRMCkihF6pH6QBttXRDeFPUkupki/rOcvUFC++ft0Yk4UCWkEP:gZVF6+D6p6Gtx9lk42CFfeUEP

Score

N/A

Malware Config

Signatures

Files

5776efe08fd2b5847cafd084ed56e0457de02608e6c8e4e971c8e00cc3355fa8
.exe windows x86

7b3279741e3cdec94c87abcef718719b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

memset

kernel32

GetModuleHandleA
HeapCreate
VirtualUnlock
LocalReAlloc
Thread32First
VirtualProtect
HeapDestroy
ExitProcess
EnterCriticalSection
WaitForSingleObject
LeaveCriticalSection
InitializeCriticalSection
CloseHandle
HeapReAlloc
HeapAlloc
HeapFree

user32

GetWindowWord
DdeNameService

Sections

.code
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 138KB - Virtual size: 137KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 772B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 496B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy