a84a6a7eb96698a85d9506da6d3e6eb99cb05544c1a178a7c3348486f66942a2 | Triage

Submit
Reports

Overview

overview

Static

static

Purchase o...20.exe

windows7_x64

Purchase o...20.exe

windows10-2004_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

Purchase order No# PO-38001830013 dt 10-05-20.exe

Resource

win7-20220414-en

masslogger collection coreentity rezer0 spyware stealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

Purchase order No# PO-38001830013 dt 10-05-20.exe

Resource

win10v2004-20220414-en

masslogger collection spyware stealer

windows10-2004_x64

0 signatures

0 seconds

General

Target

a84a6a7eb96698a85d9506da6d3e6eb99cb05544c1a178a7c3348486f66942a2
Size

786KB
MD5

1f707f750c71abef0bf6a667d6677313
SHA1

be112b5bcf18a63a5004e4a280e97ee060c476a7
SHA256

a84a6a7eb96698a85d9506da6d3e6eb99cb05544c1a178a7c3348486f66942a2
SHA512

d9928b66cfd3d91d37772d8b3b57f26ae4c6040b8f818ee69e84d04d00adbeb706be8e0745d5f8975513e13ca0f8bfa0fd56472f435e2ddf54aff57febd99d59
SSDEEP

24576:XBNRl6YxlmtcD+h73ZDCeWbwZSygarObq4V:Rvx0tHD9WUkyHrOeq

Score

N/A

Malware Config

Signatures

Files

a84a6a7eb96698a85d9506da6d3e6eb99cb05544c1a178a7c3348486f66942a2
.zip
Purchase order No# PO-38001830013 dt 10-05-20.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 861KB - Virtual size: 861KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy