d72b40aa45ba0401041e4c76c4eadbeda952af69fabf72fec88f830e0c5ad36a | Triage

Submit
Reports

Overview

overview

Static

static

d72b40aa45...6a.dll

windows7-x64

d72b40aa45...6a.dll

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

d72b40aa45ba0401041e4c76c4eadbeda952af69fabf72fec88f830e0c5ad36a.dll

Resource

win7-20220812-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

d72b40aa45ba0401041e4c76c4eadbeda952af69fabf72fec88f830e0c5ad36a.dll

Resource

win10v2004-20220901-en

ramnit banker spyware stealer trojan upx worm

windows10-2004-x64

10 signatures

150 seconds

General

Target

d72b40aa45ba0401041e4c76c4eadbeda952af69fabf72fec88f830e0c5ad36a
Size

288KB
MD5

832b3d39c2ecc62baf2ad2002e4bfb70
SHA1

f848e8fe51660cfc7fbcef8ae703a8990a995c02
SHA256

d72b40aa45ba0401041e4c76c4eadbeda952af69fabf72fec88f830e0c5ad36a
SHA512

17e0c9d3f89e877d5bba6926838f4e13a6aed36ffadbd3f8c9b8ca130b054418339168851097e7c9f6b88d17c81859624b0bb0bf0866eea5e7a126471bf61755
SSDEEP

6144:qy3MSQw2TBppuqoCWht/58ea35JFWTmyFxc9yj0kQ0LcxxQ17EA:dMS72eGFWSyFW9aHQ0QxQ2A

Score

N/A

Malware Config

Signatures

Files

d72b40aa45ba0401041e4c76c4eadbeda952af69fabf72fec88f830e0c5ad36a
.dll regsvr32 windows x86

9adb9a858fc4b17e1205f659f72cf45e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenA
WideCharToMultiByte
lstrlenW
InitializeCriticalSection
HeapDestroy
DeleteCriticalSection
lstrcpyA
MultiByteToWideChar
lstrcatA
GetModuleFileNameA
FreeLibrary
GetProcAddress
LoadLibraryA
DisableThreadLibraryCalls

user32

CharNextA

ole32

CoCreateInstance

oleaut32

RegisterTypeLi
SysFreeString
LoadTypeLi
SysAllocString

msvcrt

__CxxFrameHandler
_EH_prolog
malloc
??3@YAXPAX@Z
_initterm
free
_adjust_fdiv

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 248B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 120KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 616B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 152KB - Virtual size: 152KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy