1db8f9ee988aa3ed3da6920e9ee62cd7debcb9487f57f7289ae25fd3c8650d8a | Triage

Submit
Reports

Overview

overview

Static

static

UPS Shipment ,PDF.exe

windows7_x64

UPS Shipment ,PDF.exe

windows10-2004_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

UPS Shipment ,PDF.exe

Resource

win7-20220414-en

masslogger collection ransomware spyware stealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

UPS Shipment ,PDF.exe

Resource

win10v2004-20220414-en

masslogger spyware stealer

windows10-2004_x64

0 signatures

0 seconds

General

Target

1db8f9ee988aa3ed3da6920e9ee62cd7debcb9487f57f7289ae25fd3c8650d8a
Size

622KB
MD5

5c56db5da762b4b576543d4f5d3961e1
SHA1

f19452869ff117ba354bb6a17e5811f799b3b3a2
SHA256

1db8f9ee988aa3ed3da6920e9ee62cd7debcb9487f57f7289ae25fd3c8650d8a
SHA512

7ad28ead82043b66e2406165bab04df4056559daef67708f73aa454c1fc1c98e80c6e55049f74fa554370d8008333d61b762f2e43b3d0df03558e88fba93ab47
SSDEEP

12288:0Xgmt8znTQtZo0ie8elXa/UJjmE6jAGJDBI2aYklxmzA+Kvc+AvbjG:2t8znEZoe8eldJjmvsmzeU+YG

Score

N/A

Malware Config

Signatures

Files

1db8f9ee988aa3ed3da6920e9ee62cd7debcb9487f57f7289ae25fd3c8650d8a
.zip
UPS Shipment ,PDF.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 879KB - Virtual size: 878KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy