6b24e1c6887160c2e618d680eb1428a0887235b9d92185f465a4c70dff1e69ba | Triage

Submit
Reports

Overview

overview

Static

static

6b24e1c688...ba.dll

windows7-x64

6b24e1c688...ba.dll

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

6b24e1c6887160c2e618d680eb1428a0887235b9d92185f465a4c70dff1e69ba.dll

Resource

win7-20220812-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

6b24e1c6887160c2e618d680eb1428a0887235b9d92185f465a4c70dff1e69ba.dll

Resource

win10v2004-20220812-en

ramnit banker spyware stealer trojan upx worm

windows10-2004-x64

7 signatures

150 seconds

General

Target

6b24e1c6887160c2e618d680eb1428a0887235b9d92185f465a4c70dff1e69ba
Size

116KB
MD5

800177c448f0fb43a2ad6b74bc4f5410
SHA1

15f4f2d728cf1006953bb320e4d86f325012a9e4
SHA256

6b24e1c6887160c2e618d680eb1428a0887235b9d92185f465a4c70dff1e69ba
SHA512

8bc0c69686ae209947880b3c92797d9a1c3191988650e8297702997619251f2c2178ab15b0c3ac0ccdbdada591651d911e436c896670a4c5a2d33e963218ad89
SSDEEP

3072:EQAefR2lIeEUMi4p6hmI7ECjcSgisy8Yl:N7IYBp6hmIDjzgE8Yl

Score

N/A

Malware Config

Signatures

Files

6b24e1c6887160c2e618d680eb1428a0887235b9d92185f465a4c70dff1e69ba
.dll windows x86

d056332cf3b8d6b9c5dfda1fdbccf8ca

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcr90

_lock
__dllonexit
_except_handler4_common
_unlock
__clean_type_info_names_internal
_crt_debugger_hook
__CppXcptFilter
_adjust_fdiv
_amsg_exit
_initterm_e
_initterm
_decode_pointer
_encoded_null
free
_malloc_crt
_onexit
_encode_pointer

kernel32

GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
InterlockedCompareExchange
Sleep
InterlockedExchange
GetSystemTimeAsFileTime

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 864B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 348B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 108KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy