HEUR-Trojan-Ransom[.]Win32[.]Generic-791af9657e21c48b518874147b140389c1ff301be4f5c03863f7661bb97fd357 | Triage

Submit
Reports

Overview

overview

9

Static

static

HEUR-Troja...32.dll

windows7-x64

9

HEUR-Troja...32.dll

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

HEUR-Trojan-Ransom.Win32.dll

Resource

win7-20220812-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

HEUR-Trojan-Ransom.Win32.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

5 signatures

150 seconds

General

Target

HEUR-Trojan-Ransom.Win32.Generic-791af9657e21c48b518874147b140389c1ff301be4f5c03863f7661bb97fd357
Size

824KB
MD5

e3722dededccf18b1b8c92dde0c85d38
SHA1

1cdfc4892eacff0888d5b0de8f4a335c90a09c2d
SHA256

791af9657e21c48b518874147b140389c1ff301be4f5c03863f7661bb97fd357
SHA512

14c1992a44abf8b3edd7fa5f33c50de984faee7ff63c4058f40616d6b19898b0d87f8e891b6d7cc942f41215e0e294e4fd31255d3b28fe5abdb211f1289f1ff7
SSDEEP

12288:LVtkfaHPV/yzVQXkKFEXuiMAYzAzmEV+YW1y/Yn2yS0wa7YxE0bME5HAFc5pxPn:ptdOVtyEXuiMAYzA7jWSYnRS0QnMmgk

Score

N/A

Malware Config

Signatures

Files

HEUR-Trojan-Ransom.Win32.Generic-791af9657e21c48b518874147b140389c1ff301be4f5c03863f7661bb97fd357
.dll windows x86

baa93d47220682c04d92f7797d9224ce

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

comctl32

InitCommonControls

Sections

Size: 52KB - Virtual size: 308KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 1000KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

uowmbojc
Size: 765KB - Virtual size: 768KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

fhonsfja
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy