60f634413cb2e27303ef7854667c967ae1253266bc19fc3331943e82d38fccf3 | Triage

Submit
Reports

Overview

overview

Static

static

60f634413c...f3.dll

windows7-x64

60f634413c...f3.dll

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

60f634413cb2e27303ef7854667c967ae1253266bc19fc3331943e82d38fccf3.dll

Resource

win7-20220715-en

locky ransomware

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

60f634413cb2e27303ef7854667c967ae1253266bc19fc3331943e82d38fccf3.dll

Resource

win10v2004-20220721-en

locky persistence ransomware

windows10-2004-x64

16 signatures

150 seconds

General

Target

60f634413cb2e27303ef7854667c967ae1253266bc19fc3331943e82d38fccf3
Size

110KB
MD5

7e65a93663960c7c40c36953cbfb5f6f
SHA1

cd8b22a6c8dc5a3b9dd795824aa0b99359e63d94
SHA256

60f634413cb2e27303ef7854667c967ae1253266bc19fc3331943e82d38fccf3
SHA512

0b674a73f5fbc4be14d951f3aadbed617310a2b21aa08489bab7bd07d57b1bcd812e411070e569af7fa5d3383264178c9e60dc03238a9d668b4464db8ed69782
SSDEEP

3072:Ar7kbFKbEaJ0E5I6OJTcvAjSn04QX7MSWiD/K:AsbiEaJB5IhscSn0BX7MSWK

Score

N/A

Malware Config

Signatures

Files

60f634413cb2e27303ef7854667c967ae1253266bc19fc3331943e82d38fccf3
.dll windows x86

d1230df91ec837dd4d002257ed3223f1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetOEMCP
GetCurrentProcessId
GetACP
CloseHandle

user32

SendMessageA
CharLowerA

gdi32

AddFontMemResourceEx
AbortPath
AnimatePalette
BeginPath
AngleArc

winspool.drv

ClosePrinter

winmm

PlaySoundA

msvcrt

exit

Sections

.text
Size: 91KB - Virtual size: 91KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.itext
Size: 512B - Virtual size: 10B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss1
Size: - Virtual size: 40KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 900B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy