Shipping Document[.]exe | Triage

Submit
Reports

Overview

overview

Static

static

Shipping Document.exe

windows7_x64

Shipping Document.exe

windows10-2004_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

Shipping Document.exe

Resource

win7-20220414-en

formbook xloader a8hq loader persistence rat spyware stealer suricata trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

Shipping Document.exe

Resource

win10v2004-20220414-en

formbook xloader a8hq loader persistence rat spyware stealer suricata trojan

windows10-2004_x64

0 signatures

0 seconds

General

Target

Shipping Document.exe
Size

609KB
MD5

cdb997600be6215980e8bacd253f329c
SHA1

b405b6edee2d638c1bd768a550272fdf4e541aab
SHA256

0cf451892cf34cdc6c9d7264b6be01721b2294e673d5fa0907c9c536963d0cb4
SHA512

444313a5e34595f0fb2c624bac9bc0fe1b52956541315874c5cd79a8ee330d192f99b7f3ac856b0b1b95e532574ac66444da069a7e57605e52bd6d8a9f2f5499
SSDEEP

12288:kz7Erljk8Bf8EUD2/uVeYtveBQqYM6gVZoJjmz8bsEwKGC/0GeJjL7vB+fcljLP7:kz7ErNBbUq/up5eCsVZ

Score

N/A

Malware Config

Signatures

Files

Shipping Document.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 607KB - Virtual size: 607KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 896B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy