a39c7f3664d4ddec0a8b92715683e5ac7a9b61729ed28c464e8afdf409153096 | Triage

Submit
Reports

Overview

overview

Static

static

a39c7f3664...96.dll

windows7-x64

3

a39c7f3664...96.dll

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

a39c7f3664d4ddec0a8b92715683e5ac7a9b61729ed28c464e8afdf409153096.dll

Resource

win7-20220901-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

a39c7f3664d4ddec0a8b92715683e5ac7a9b61729ed28c464e8afdf409153096.dll

Resource

win10v2004-20220812-en

ramnit banker spyware stealer trojan upx worm

windows10-2004-x64

7 signatures

150 seconds

General

Target

a39c7f3664d4ddec0a8b92715683e5ac7a9b61729ed28c464e8afdf409153096
Size

119KB
MD5

1051a5d8cbd8ac5315ebc9cd5007eb30
SHA1

40805ca1dd50a1decef9f8a1b77a75357e5bdd6f
SHA256

a39c7f3664d4ddec0a8b92715683e5ac7a9b61729ed28c464e8afdf409153096
SHA512

3570a268a3de59f5133011a866def28fcffe162f53bb2dd704a177031d477cfea40fc5da247f54dcb3036c979f0fddf83980401be5e40fbe0fb7eea7e69bd7ad
SSDEEP

3072:bIVYiYcpiC200Db7249rUVeu0VRx8dy0jCWG1XoT:bLiYSiC20e/nrFtVRx2RG1Xg

Score

N/A

Malware Config

Signatures

Files

a39c7f3664d4ddec0a8b92715683e5ac7a9b61729ed28c464e8afdf409153096
.dll windows x86

f7bde36e4bb47c8117041f8692d65e4f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_except_handler4_common
_onexit
__dllonexit
_unlock
_lock
_initterm
malloc
free
_amsg_exit
_XcptFilter
wcsstr
memset

kernel32

GetProcAddress
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetTickCount
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
Sleep
GetPrivateProfileSectionNamesW
HeapAlloc
HeapFree
GetModuleHandleExW
GetProcessHeap
GetLastError
ExpandEnvironmentStringsW

Exports

Exports

Invoke

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 880B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 866B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 109KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy