f466d7a050e90b6a78de2fb0629f0e07062be4b6b8a2125b2157dcc8502145ba | Triage

Submit
Reports

Overview

overview

Static

static

f466d7a050...ba.exe

windows7-x64

f466d7a050...ba.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

f466d7a050e90b6a78de2fb0629f0e07062be4b6b8a2125b2157dcc8502145ba.exe

Resource

win7-20220901-en

ramnit banker evasion persistence spyware stealer trojan worm

windows7-x64

18 signatures

150 seconds

Behavioral task

behavioral2

Sample

f466d7a050e90b6a78de2fb0629f0e07062be4b6b8a2125b2157dcc8502145ba.exe

Resource

win10v2004-20220812-en

ramnit banker evasion spyware stealer trojan worm

windows10-2004-x64

18 signatures

150 seconds

General

Target

f466d7a050e90b6a78de2fb0629f0e07062be4b6b8a2125b2157dcc8502145ba
Size

113KB
MD5

031e382fc33c8b44020970ebf67889ad
SHA1

3903fb5971b791f80ea2261117640d2737050f6f
SHA256

f466d7a050e90b6a78de2fb0629f0e07062be4b6b8a2125b2157dcc8502145ba
SHA512

48e9611d02989300c7484fd473d6bccaf896d87edefe56ed730b39d6331fc140b878af108c1a342cdac055bbe9786d3678ecb401927e3e97274aa76cc8bf57b6
SSDEEP

1536:eRS0VSmAi+3mxNaAiCGf5y3gF39jscUvbUIGZ5Ms0XAWKG90DHvV+Hn2P8rmjgMh:ewdmAil8AWf8iOrGZasmAbbD8sjBg

Score

N/A

Malware Config

Signatures

Files

f466d7a050e90b6a78de2fb0629f0e07062be4b6b8a2125b2157dcc8502145ba
.exe windows x86

c7a1e4b177ce109a3e2b5b452ed33d46

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
InterlockedExchange
EnumLanguageGroupLocalesW
GetNumaHighestNodeNumber

setupapi

SetupCloseInfFile
SetupQueryFileLogA
SetupInitializeFileLogA
SetupCloseLog
SetupOpenLog
SetupRemoveFileLogEntryA
SetupGetFileCompressionInfoA
SetupGetInfFileListA
SetupScanFileQueueA
SetupInstallFilesFromInfSectionA
SetupOpenAppendInfFileA
SetupOpenFileQueue
SetupGetSourceFileLocationA
SetupGetSourceFileSizeA

Sections

.text
Size: - Virtual size: 136KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 33KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy