e3197cfb159d0f7b9b2d3d91e10f0db28a88210c90c228beb3a5efc68730e0f5 | Triage

Submit
Reports

Overview

overview

Static

static

e3197cfb15...f5.dll

windows7-x64

e3197cfb15...f5.dll

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

e3197cfb159d0f7b9b2d3d91e10f0db28a88210c90c228beb3a5efc68730e0f5.dll

Resource

win7-20221111-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

e3197cfb159d0f7b9b2d3d91e10f0db28a88210c90c228beb3a5efc68730e0f5.dll

Resource

win10v2004-20221111-en

windows10-2004-x64

5 signatures

150 seconds

General

Target

e3197cfb159d0f7b9b2d3d91e10f0db28a88210c90c228beb3a5efc68730e0f5
Size

113KB
MD5

1ad27bff3ddf1fe13403e4f77d6d9770
SHA1

387727cf30483d5791ee5f73c7d0e667245788a0
SHA256

e3197cfb159d0f7b9b2d3d91e10f0db28a88210c90c228beb3a5efc68730e0f5
SHA512

ca401e9fb2ba2f2a9eb334112f9a6f09178fd779030196e60c0dd5a93dbd6354c3330ae1cbacf379198a00a92aa5e9173a0e44c06670e92446c6a412bddc447a
SSDEEP

1536:dd+CnT7pXy664xMonw3liEd8rwRNCjdtyldWAziUXW0Z4T0iSYVWjNXrUD34C+aI:dwwc66n00+kTppYEZb/C+XbS/PItRV

Score

N/A

Malware Config

Signatures

Files

e3197cfb159d0f7b9b2d3d91e10f0db28a88210c90c228beb3a5efc68730e0f5
.dll windows x86

25dd1be1977a1f43dd949aae17e4f175

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

free
_adjust_fdiv
malloc
_initterm

kernel32

GetProcAddress
InterlockedDecrement
GetTickCount
FreeLibrary
LoadLibraryA
InterlockedIncrement

user32

UnhookWindowsHookEx
CallNextHookEx
SetWindowsHookExA

Exports

Exports

IdleMonGetLastInputTime
IdleMonInit
IdleMonTerm

Sections

.text
Size: 1024B - Virtual size: 730B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 808B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 48B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.AOLIdle
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 880B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 208B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 108KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy