77665ab30eba7a50ea5af12facabff730840919e9587a68d77d24cabece7ecf8 | Triage

Submit
Reports

Overview

overview

Static

static

shipping d...DF.exe

windows7_x64

shipping d...DF.exe

windows10-2004_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

shipping documents.PDF.exe

Resource

win7-20220414-en

agenttesla collection evasion keylogger persistence rezer0 spyware stealer trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

shipping documents.PDF.exe

Resource

win10v2004-20220414-en

agenttesla evasion keylogger persistence spyware stealer trojan

windows10-2004_x64

0 signatures

0 seconds

General

Target

77665ab30eba7a50ea5af12facabff730840919e9587a68d77d24cabece7ecf8
Size

400KB
MD5

4e3ac74c7bc1f26c8ac4bd4abc6d2b39
SHA1

9b0ab84564bc872885172ddb5abc33604f8e8b49
SHA256

77665ab30eba7a50ea5af12facabff730840919e9587a68d77d24cabece7ecf8
SHA512

365b3059a9089039bca912eec66ebc4259452d87f35fac39119994bbb1bf9e06f5f2332ffb53439ee6f0d027d70e764bdbce4f7f24d34ed2a1e988ae60a5f0e3
SSDEEP

12288:reR/zVqhmg/0iVLzesoGS1c4cK8ZhHQHl53S58C:sghmg/zVLji1cFlZhAl53S5P

Score

N/A

Malware Config

Signatures

Files

77665ab30eba7a50ea5af12facabff730840919e9587a68d77d24cabece7ecf8
.zip
shipping documents.PDF.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 431KB - Virtual size: 430KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy