Trojan-Ransom[.]Win32[.]Blocker[.]dmxf-870eae37a394177540c334a646cb15ec20bb937d3d4b883e2f3f3eb538de485f | Triage

Submit
Reports

Overview

overview

8

Static

static

Trojan-Ran...er.exe

windows7-x64

8

Trojan-Ran...er.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

Trojan-Ransom.Win32.Blocker.exe

Resource

win7-20220901-en

persistence upx

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

Trojan-Ransom.Win32.Blocker.exe

Resource

win10v2004-20220812-en

persistence upx

windows10-2004-x64

8 signatures

150 seconds

General

Target

Trojan-Ransom.Win32.Blocker.dmxf-870eae37a394177540c334a646cb15ec20bb937d3d4b883e2f3f3eb538de485f
Size

211KB
MD5

e2c615e6aabda8ca308b1f2b9e283ed4
SHA1

1fffc45f4796769e9211bce05d7cb6242992c6be
SHA256

870eae37a394177540c334a646cb15ec20bb937d3d4b883e2f3f3eb538de485f
SHA512

7abc86b935a5b4b04146076a18d5fefd9349f3164da3208963ca8dcfa8e16419378fc2e1d66d8e95279059aea1c32ebede66acf128425f9390fa0b5dd665ed06
SSDEEP

3072:IbRBFIZVz8S6KBdY1XI4SihxlWzXzrl7iaznRDPOfBQ6FKbj4IG:g2X0K4IoxEzXzrl7iaznRDPOJQFbj4IG

Score

N/A

Malware Config

Signatures

Files

Trojan-Ransom.Win32.Blocker.dmxf-870eae37a394177540c334a646cb15ec20bb937d3d4b883e2f3f3eb538de485f
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Code Sign

58:12:96:ab:b4:1d:80:a7:41:f9:e2:67:af:ea:1d:3d
Certificate

Issuer

CN={AC283D35-E9E5-458B-A939-FC0E3BB39E5C}

Not Before

22/01/2014, 21:20

Not After

23/01/2015, 03:20

Subject

CN={AC283D35-E9E5-458B-A939-FC0E3BB39E5C}

6a:33:c1:09:b6:65:0f:ac:d3:f8:63:74:ee:b8:70:2f:38:ec:14:02
Signer

Actual PE Digest

6a:33:c1:09:b6:65:0f:ac:d3:f8:63:74:ee:b8:70:2f:38:ec:14:02

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN={AC283D35-E9E5-458B-A939-FC0E3BB39E5C}

04/11/2022, 15:42
Valid: false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 206KB - Virtual size: 205KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy