Original Shipment Document[.]exe | Triage

Submit
Reports

Overview

overview

Static

static

Original S...nt.exe

windows7_x64

Original S...nt.exe

windows10-2004_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

Original Shipment Document.exe

Resource

win7-20220414-en

xloader a8hq loader rat suricata

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

Original Shipment Document.exe

Resource

win10v2004-20220414-en

formbook xloader a8hq loader persistence rat spyware stealer suricata trojan

windows10-2004_x64

0 signatures

0 seconds

General

Target

Original Shipment Document.exe
Size

476KB
MD5

5acff997403b61e5588f11b45c7aca96
SHA1

1bbf2a3016e5cb97fe7de40b43c0d81784a68f2a
SHA256

976a06a6e0f8503df2f8b22cadde37e63f842aa7145da7f360418fcc890b8395
SHA512

95da7709bed3eab07f8b0cd2f3dd53a9101bfedeac30cce3800007e5cd646f2414f16accd0a9fc8d55d4705705487c07fb4de7d77ea280b2de18f23fb4bed830
SSDEEP

12288:92r5YvweLX5hn7xoOgNfT1h+BKkvUiSRzTH1:2iLp5loOgN77IozTV

Score

N/A

Malware Config

Signatures

Files

Original Shipment Document.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 474KB - Virtual size: 473KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy