attachments[.]zip | Triage

Submit
Reports

Overview

overview

Static

static

QUOTATION REVIEW.exe

windows7_x64

QUOTATION REVIEW.exe

windows10_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

QUOTATION REVIEW.exe

Resource

win7-en-20211208

xloader iifn loader rat suricata

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

QUOTATION REVIEW.exe

Resource

win10-en-20211208

xloader iifn loader rat suricata

windows10_x64

0 signatures

0 seconds

General

Target

attachments.zip
Size

338KB
MD5

00ab90d2d2226e317be2a514347ced0d
SHA1

da3e5ebd0dacafc79f88d038744531e8d1b48173
SHA256

b195e8f91a3465794595505dd2300b00d76841883eba905d5c09b74654b946f2
SHA512

2f0c7eb5d626ac3c7be75c9707f2f5ca482ba11f494d1c8bc218886d702a28897d009c44702a785af8bcac36de830624d8361c97fd930f34e9462b5dcca91f8d
SSDEEP

6144:LVIQntieU87cTrkAFYq4xi4x0D/TIOplzcQMCYWNtQ/XLgzrs31LiD7cSn5x5:LWEQeP7cXkAFYq4QO0/bplBwctQv0zrv

Score

N/A

Malware Config

Signatures

Files

attachments.zip
.zip
QUOTATION REVIEW.zip
.zip
QUOTATION REVIEW.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Code Sign

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 380KB - Virtual size: 379KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy