Static task
static1
Behavioral task
behavioral1
Sample
HEUR-Trojan-Ransom.MSIL.Encoder.exe
Resource
win10v2004-20220812-en
General
-
Target
HEUR-Trojan-Ransom.MSIL.Encoder.gen-b722cc135cf8ec4e6ca9782b7407373244b3140a0dc7df55789a00cfc29aa066
-
Size
4.2MB
-
MD5
9ad3fe06ebf892bee541ba974c2e62c2
-
SHA1
3b0dc314104a08765b15ec29c81e99407cc4fc61
-
SHA256
b722cc135cf8ec4e6ca9782b7407373244b3140a0dc7df55789a00cfc29aa066
-
SHA512
2a6875430551e432559bdd343a6db250bcb676ddb22d63c4ffdadb659fbeaee21a295de1c578be31f63c88bda2ca22125155cb23db9dc473469b5182c03201e1
-
SSDEEP
49152:HbS4mzc/N8r/CbuH6pYr7CcO23S8ffncO23ny:HlmIK7pH6SXFO23iO23ny
Malware Config
Signatures
Files
-
HEUR-Trojan-Ransom.MSIL.Encoder.gen-b722cc135cf8ec4e6ca9782b7407373244b3140a0dc7df55789a00cfc29aa066.exe windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 3.8MB - Virtual size: 3.8MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 363KB - Virtual size: 363KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ