Trojan-Ransom[.]Win32[.]Blocker[.]lzrl-596c40833450e63aadd5e9f63e23e35c131d79842e84511677e5b625a72f75be | Triage

Submit
Reports

Overview

overview

8

Static

static

Trojan-Ran...er.exe

windows7-x64

8

Trojan-Ran...er.exe

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

Trojan-Ransom.Win32.Blocker.exe

Resource

win7-20220812-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

Trojan-Ransom.Win32.Blocker.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

6 signatures

150 seconds

General

Target

Trojan-Ransom.Win32.Blocker.lzrl-596c40833450e63aadd5e9f63e23e35c131d79842e84511677e5b625a72f75be
Size

59KB
MD5

28dfadf4432981665cd4043c4676d68c
SHA1

7226870f97b7f99371ab6014b61debc1f42a0408
SHA256

596c40833450e63aadd5e9f63e23e35c131d79842e84511677e5b625a72f75be
SHA512

39ae8133eec8eb0261c8b7e0eb3aadc95874e3c27d13a951d3a42b6f81ac26c6d8e11d8a11eeb38740848b91cfe6fc9f8b2785cf519b54c8178c4cd294bd914a
SSDEEP

1536:6DnqIqzzEmmqdQwhmDnPmHJ6Ltcb2BRTAVvM4:6DnYcmbuPt82BdAVv

Score

N/A

Malware Config

Signatures

Files

Trojan-Ransom.Win32.Blocker.lzrl-596c40833450e63aadd5e9f63e23e35c131d79842e84511677e5b625a72f75be
.exe windows x86

b9079b65a01ef2e5d19ab27ede265e75

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetClipboardViewer
LoadCursorA
GetDlgCtrlID
DispatchMessageA
TranslateMessage
GetMessageA
LoadIconA
EnableWindow
BeginPaint
CheckDlgButton
GetWindowLongA
WindowFromDC
SetWindowTextA
EndPaint
CreateWindowExA
ShowWindow
UpdateWindow
RegisterClassExA

gdi32

CreatePen
DeleteObject
GetStockObject
SetMapMode
CreatePatternBrush
CreateEllipticRgn

ole32

OleGetClipboard
CoGetCurrentProcess
CoCopyProxy
OleIsRunning

oleaut32

VectorFromBstr

kernel32

InitializeCriticalSection
EnterCriticalSection
GetDriveTypeA
GetEnvironmentStrings
SetFileAttributesA
LeaveCriticalSection
DeleteCriticalSection
GetModuleHandleA
HeapAlloc
HeapCreate
GetLastError
HeapFree
HeapDestroy
GetACP

Sections

.text
Size: 50KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy