aa207e0f5f2bad97d8a0209d6d5b4583ecb32311aba7c6e996125f0a07c11c02 | Triage

Submit
Reports

Overview

overview

Static

static

Aquatherm ...xs.exe

windows7_x64

Aquatherm ...xs.exe

windows10-2004_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

Aquatherm Rechnungen 384890 _Xlxs.exe

Resource

win7-20220414-en

formbook k2w persistence rat spyware stealer suricata trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

Aquatherm Rechnungen 384890 _Xlxs.exe

Resource

win10v2004-20220414-en

formbook k2w persistence rat spyware stealer suricata trojan

windows10-2004_x64

0 signatures

0 seconds

General

Target

aa207e0f5f2bad97d8a0209d6d5b4583ecb32311aba7c6e996125f0a07c11c02
Size

388KB
MD5

03a68b507c40e441b222f8d8a1c1cdaa
SHA1

e9a8896fe4ef5b40f2e1d88b023d527b3044f270
SHA256

aa207e0f5f2bad97d8a0209d6d5b4583ecb32311aba7c6e996125f0a07c11c02
SHA512

6fb94cdc9d0e10bbeea61e8224954b80bfc9fd9eb3ba40132d6927e5b82930370e4ac204c9e6a805212b57acdaaa1d9c490777f37df4f9c5a9b1020d98d6ee32
SSDEEP

12288:004aUe4Oi6tvqTXw0CBp5sZEnK0yLk7iUXiM:t+e4YvqTArp5sZEKlLVciM

Score

N/A

Malware Config

Signatures

Files

aa207e0f5f2bad97d8a0209d6d5b4583ecb32311aba7c6e996125f0a07c11c02
.zip
Aquatherm Rechnungen 384890 _Xlxs.exe
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 347KB - Virtual size: 347KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 2KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 221KB - Virtual size: 221KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy