a3035079e038eb110a8ef5b762dd2a32ec774b849c51cf20722bdd2379ed08b1 | Triage

Submit
Reports

Overview

overview

Static

static

a3035079e0...b1.exe

windows7-x64

8

a3035079e0...b1.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

a3035079e038eb110a8ef5b762dd2a32ec774b849c51cf20722bdd2379ed08b1.exe

Resource

win7-20220812-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

a3035079e038eb110a8ef5b762dd2a32ec774b849c51cf20722bdd2379ed08b1.exe

Resource

win10v2004-20221111-en

ramnit banker spyware stealer trojan upx worm

windows10-2004-x64

9 signatures

150 seconds

General

Target

a3035079e038eb110a8ef5b762dd2a32ec774b849c51cf20722bdd2379ed08b1
Size

150KB
MD5

33fba2e3a137f68bc6cb3a20b248c344
SHA1

31c06305bcdcf16fa73536795bb6513043abb3ca
SHA256

a3035079e038eb110a8ef5b762dd2a32ec774b849c51cf20722bdd2379ed08b1
SHA512

35611b2afae57a1ab46d687b0966c6cedf7b497eab9fc05dbed6b9a79f80e077a231f2551cbdd6704249e3a75dcb0c22cea5a5fa7fc4b4e158cefd113ebd89ee
SSDEEP

1536:5LHvv4a3pfYRPit5k1zcY6F4lX7IncXC6h25Fin0Xe2oOQLsx:5Dvv4aZfEPitqzsGLInKCOQS9LlU

Score

N/A

Malware Config

Signatures

Files

a3035079e038eb110a8ef5b762dd2a32ec774b849c51cf20722bdd2379ed08b1
.exe windows x86

fc60a920495dd603b6329f9f82fb28de

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameW
GetProcAddress
LoadLibraryW
HeapFree
GetFileAttributesW
HeapAlloc
GetProcessHeap
GetCommandLineW
SetStdHandle
ExitProcess
CreateFileW
GetModuleHandleW

shell32

CommandLineToArgvW

msi

ord173
ord205

user32

MessageBoxW

shlwapi

AssocQueryStringW
StrCmpW

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 82KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 62KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy