dd988b13c8f53beb75b2cfe1af636c0293a5c2d504696301184616a821cfaba9 | Triage

Submit
Reports

Overview

overview

Static

static

Payment_Advice.exe

windows7_x64

Payment_Advice.exe

windows10-2004_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

Payment_Advice.exe

Resource

win7-20220414-en

agenttesla collection evasion keylogger rezer0 spyware stealer trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

Payment_Advice.exe

Resource

win10v2004-20220414-en

agenttesla collection evasion keylogger spyware stealer trojan

windows10-2004_x64

0 signatures

0 seconds

General

Target

dd988b13c8f53beb75b2cfe1af636c0293a5c2d504696301184616a821cfaba9
Size

450KB
MD5

35e427e11fd4216dcb459ab924d7f3ee
SHA1

44099af6ea68870a57cf048d8526ae5b8a0524b7
SHA256

dd988b13c8f53beb75b2cfe1af636c0293a5c2d504696301184616a821cfaba9
SHA512

416f4e2b39267d54882d179e252cfa9f1485f101f9bff972b945aeb5f193ae9b8fe4b711d932b9bf65ae26a63610f052af11ea5a5bf43b4e6edd81991a57d861
SSDEEP

12288:HTPWk04t9P8bNv5yQYWcX0BoTzbFi/AW6hF4IGF:zPWitN8bNAz6oTzwIin

Score

N/A

Malware Config

Signatures

Files

dd988b13c8f53beb75b2cfe1af636c0293a5c2d504696301184616a821cfaba9
.zip
Payment_Advice.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

V1^E2
Size: 66KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 398KB - Virtual size: 398KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy