470f43d3a398069b0b221abc6c08fd25f7a6fb8b67383b302e250f89d66566cc | Triage

Submit
Reports

Overview

overview

Static

static

QUOTATION.exe

windows7_x64

QUOTATION.exe

windows10-2004_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

QUOTATION.exe

Resource

win7-20220414-en

agenttesla collection evasion keylogger spyware stealer trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

QUOTATION.exe

Resource

win10v2004-20220414-en

agenttesla collection evasion keylogger spyware stealer trojan

windows10-2004_x64

0 signatures

0 seconds

General

Target

470f43d3a398069b0b221abc6c08fd25f7a6fb8b67383b302e250f89d66566cc
Size

605KB
MD5

2c22b90b0628d017110bdcc5dc560975
SHA1

c10bd9897e6502cfca46639d30a73088457bb4e6
SHA256

470f43d3a398069b0b221abc6c08fd25f7a6fb8b67383b302e250f89d66566cc
SHA512

497186113ef95ab321e22cddfcc1ce3f9e5dab9361b319a4c470a6f27fc2c5c68ab9d159d33e798345064ff3612214d3d79bdbada504b2b0b952b4ce5a8941a7
SSDEEP

12288:RdTbe7Sr45v4WtWJTT7PgWTEBurPUdcuFhInKoPiXROv7KQID5Yb:RlZWtQrgSUSuknwOjQCb

Score

N/A

Malware Config

Signatures

Files

470f43d3a398069b0b221abc6c08fd25f7a6fb8b67383b302e250f89d66566cc
.zip
QUOTATION.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 738KB - Virtual size: 737KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy