HEUR-Trojan-Ransom[.]Win32[.]Generic-f70966e32d18a1e2ed51ebdcc6b985d8f7613febf0680639076c71ebeab6a350[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

HEUR-Trojan-Ransom.Win32.Generic-f70966e32d18a1e2ed51ebdcc6b985d8f7613febf0680639076c71ebeab6a350.exe
Size

385KB
MD5

a9a0fae4766d9f7cafa1560f5f62e46f
SHA1

d582608dc07bd9f771334cdb60626755997dd56c
SHA256

f70966e32d18a1e2ed51ebdcc6b985d8f7613febf0680639076c71ebeab6a350
SHA512

5c2f89a16c5291d509f41bd5f12d18a386892738cfd5fb5cbd2156c52d46f28abde5f199461fe9a8bf3aa3f7e4644fe66c3ad48c3b114b792efdbf421468856b
SSDEEP

6144:Yk5ShoN1TdQo5N1dKnW3II4HKnW3II4LM/MEL9bJCWU2VEcNEs:9QoN1TdQs4nSxnSV/MA/6s

Score

N/A

Malware Config

Signatures

Files

HEUR-Trojan-Ransom.Win32.Generic-f70966e32d18a1e2ed51ebdcc6b985d8f7613febf0680639076c71ebeab6a350.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 382KB - Virtual size: 382KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ