e9197b22ad2cfebf52daf4e9960e48928e564cec18e393a5d6cab5fe60f583d3 | Triage

Submit
Reports

Overview

overview

Static

static

e9197b22ad...d3.exe

windows7-x64

8

e9197b22ad...d3.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

e9197b22ad2cfebf52daf4e9960e48928e564cec18e393a5d6cab5fe60f583d3.exe

Resource

win7-20220812-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

e9197b22ad2cfebf52daf4e9960e48928e564cec18e393a5d6cab5fe60f583d3.exe

Resource

win10v2004-20220812-en

ramnit banker spyware stealer trojan upx worm

windows10-2004-x64

13 signatures

150 seconds

General

Target

e9197b22ad2cfebf52daf4e9960e48928e564cec18e393a5d6cab5fe60f583d3
Size

96KB
MD5

080ce85afe48f391779ed0b1c2df401a
SHA1

b3479a19f33d0bb89b937d4e73a68bcf87674831
SHA256

e9197b22ad2cfebf52daf4e9960e48928e564cec18e393a5d6cab5fe60f583d3
SHA512

80ff371765401770fb0dbeba0a46e0a9fe90e450ef56b98b5a00cfff2b42801c72c8902f3e4bc483946ab2f963b24d3184ae929dae81383ce219802f7abbd478
SSDEEP

1536:Wu4aHSC38Ibgcokna1b181PcD9/+RSqe5uj2MkhJAA3AP:H4aHSC3N4Fb21PI+0Qj6hJAki

Score

N/A

Malware Config

Signatures

Files

e9197b22ad2cfebf52daf4e9960e48928e564cec18e393a5d6cab5fe60f583d3
.exe windows x86

12455bdb171b209f0c7bd7983bbe81f3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetOEMCP
SetConsoleCtrlHandler
GetEnvironmentStrings
GetCommandLineA
GetVersion
RtlUnwind
UnhandledExceptionFilter
GetModuleFileNameA
GetACP
ExitProcess
GetCPInfo
GetStdHandle
GetFileType
GetStartupInfoA
VirtualFree
VirtualAlloc
WriteFile
GetLastError

Sections

.text
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 502B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 944B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 554B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy