8eb296174985e174854780f7e7ff51d59a6af811d264b9a217f0094ba620fc4f | Triage

Submit
Reports

Overview

overview

Static

static

8eb2961749...4f.dll

windows7-x64

8eb2961749...4f.dll

windows10-2004-x64

8

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

8eb296174985e174854780f7e7ff51d59a6af811d264b9a217f0094ba620fc4f.dll

Resource

win7-20221111-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

8eb296174985e174854780f7e7ff51d59a6af811d264b9a217f0094ba620fc4f.dll

Resource

win10v2004-20220901-en

windows10-2004-x64

5 signatures

150 seconds

General

Target

8eb296174985e174854780f7e7ff51d59a6af811d264b9a217f0094ba620fc4f
Size

270KB
MD5

59446eb81ad14e5d42d006a2ba442bc0
SHA1

ea998d73cf5ca18f150add499b126eda8891d304
SHA256

8eb296174985e174854780f7e7ff51d59a6af811d264b9a217f0094ba620fc4f
SHA512

c2a273898f727c4ad92c6ab7b6a5bfd6b606f1eb6f83cfeffb3b7f968d7014a2d09de3c39c55ce401d06ac45a4b9acc2db4a506216af2b443d0b33bef018190a
SSDEEP

3072:vwhGHazzR6AfNm+RRORpkVlC+qXtX6ypmpa8PLbWCc48Te5OsgPuDSOV:vLavR6g/cHyC+ql6DY8RgH4

Score

N/A

Malware Config

Signatures

Files

8eb296174985e174854780f7e7ff51d59a6af811d264b9a217f0094ba620fc4f
.dll windows x86

25dd1be1977a1f43dd949aae17e4f175

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

free
_adjust_fdiv
malloc
_initterm

kernel32

GetProcAddress
InterlockedDecrement
GetTickCount
FreeLibrary
LoadLibraryA
InterlockedIncrement

user32

UnhookWindowsHookEx
CallNextHookEx
SetWindowsHookExA

Exports

Exports

IdleMonGetLastInputTime
IdleMonInit
IdleMonTerm

Sections

.text
Size: 1024B - Virtual size: 730B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 808B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 48B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.AOLIdle
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 880B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 208B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 265KB - Virtual size: 268KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy