File: baa0bff562386a8ad5f2b22d5d7ae39072de1eda94cc58bf3ad05430240918e5

Metadata
File name:N/A
File type:PE32 executable (GUI) Intel 80386 (stripped to external PDB), for MS Windows
File size:593920
Analysis date:N/A
MD5:8f09bb07029f9ee43fdd3ff2e9206132
SHA1:bdcca55eeb63f5a820bd63382b7f2933da7c58b2
SHA256:baa0bff562386a8ad5f2b22d5d7ae39072de1eda94cc58bf3ad05430240918e5
SHA512:N/A
SSDEEP:N/A
IMPHASH:N/A
Authentihash:N/A
Related resources
PE TypePE32
MIME Typeapplication/octet-stream
Linker Version12.0
Uninitialized Data SizeN/A
Initialized Data Size544768
Image Version0.0
File TypeWin32 EXE
File Size580 kB
Machine TypeIntel 386 or later, and compatibles
WarningPossibly corrupt Version resource
Subsystem Version5.1
SubsystemWindows GUI
Code Size48128
OS Version5.1
Entry Point0x5a74
Source:
APTNotes
Cyber threat intelligence reports associated with baa0bff562386a8ad5f2b22d5d7ae39072de1eda94cc58bf3ad05430240918e5.
Loading...
Domains
Domains the malware sample communicates with.
Hosts
Hosts the malware sample communicates with.
HTTP Requests
HTTP requests the malware sample makes.
AV Detections
AV detection names associated with the malware sample.
ALYacTrojan.RanSerKD.6076206
AVGWin32:Malware-gen
AVwareTrojan.Win32.Generic!BT
Ad-AwareTrojan.RanSerKD.6076206
AegisLabRansom.Cerber.Smaly0!c
AhnLab-V3Win-Trojan/RansomCrypt.Exp
ArcabitTrojan.RanSerKD.D5CB72E
AvastWin32:Malware-gen
AviraTR/Crypt.ZPACK.kkgwn
BaiduWin32.Trojan.WisdomEyes.16070401.9500.9987
BitDefenderTrojan.RanSerKD.6076206
CAT-QuickHealTrojan.IGENERIC
ClamAVWin.Trojan.Tofsee-6345150-0
CrowdStrikemalicious_confidence_100% (W)
CylanceUnsafe
CyrenW32/Locky.DFHC-6078
DrWebTrojan.Encoder.13570
ESET-NOD32a variant of Win32/Kryptik.FXIU
EmsisoftTrojan.RanSerKD.6076206 (B)
Endgamemalicious (high confidence)
F-ProtW32/Locky.PL
F-SecureTrojan.RanSerKD.6076206
FortinetW32/Elenooka.E!tr
GDataWin32.Trojan-Ransom.Locky.EB
IkarusTrojan-Ransom.Locky
Invinceaheuristic
JiangminTrojan.Locky.dnf
K7AntiVirusTrojan ( 0051898f1 )
K7GWTrojan ( 0051898f1 )
KasperskyTrojan-Ransom.Win32.Locky.aavt
MAXmalware (ai score=99)
MalwarebytesTrojan.MalPack
McAfeeRansomware-GHE!8F09BB07029F
McAfee-GW-EditionBehavesLike.Win32.AdwareLinkury.hc
MicroWorld-eScanTrojan.RanSerKD.6076206
MicrosoftRansom:Win32/Locky
NANO-AntivirusTrojan.Win32.Locky.ethsky
Paloaltogeneric.ml
PandaTrj/RnkBend.A
SUPERAntiSpywareRansom.Cerber/Variant
SentinelOnestatic engine - malicious
SophosMal/Elenoocka-E
SymantecRansom.Locky.B
TencentWin32.Trojan.Raas.Auto
TrendMicroRansom_CERBER.SMALY0
TrendMicro-HouseCallRansom_CERBER.SMALY0
VIPRETrojan.Win32.Generic!BT
ViRobotTrojan.Win32.Z.Highconfidence.593920
WebrootW32.Trojan.Gen
ZillyaTrojan.Kryptik.Win32.1269575
ZoneAlarmTrojan-Ransom.Win32.Locky.aavt
nProtectRansom/W32.Locky.593920.C
Mutants
Mutants created by the malware sample.
Registry keys
Registry keys created by the malware sample.
Comments
User comments about baa0bff562386a8ad5f2b22d5d7ae39072de1eda94cc58bf3ad05430240918e5.
NOTICE: We have updated our privacy terms and conditions in accordance to GDPR. By using our site, you acknowledge that you have read and understand our Privacy Policy. Your use of ThreatMiner’s Products and Services is subject to these policies and terms.