shipping doc[.]exe | Triage

Submit
Reports

Overview

overview

Static

static

shipping doc.exe

windows7_x64

shipping doc.exe

windows10-2004_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

shipping doc.exe

Resource

win7-20220414-en

formbook xloader a8hq loader persistence rat spyware stealer suricata trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

shipping doc.exe

Resource

win10v2004-20220414-en

formbook xloader a8hq loader persistence rat spyware stealer suricata trojan

windows10-2004_x64

0 signatures

0 seconds

General

Target

shipping doc.exe
Size

457KB
MD5

4e949c0a2785b46e91af2a6b100354de
SHA1

f7634b853f424ebee8052c267713dfaa3cd45023
SHA256

0806d22c60c3de1ea16a521d75e299e95e88bb578bee2d5439761ed7fb43372a
SHA512

55b031f582f6955a3a5c12125c36cc1b215f0475d3db0ce402ac3af5750c15a52bf430285f3f11ee8ee61331bddc59a06af0b2efb36bea0efa6f966ecef6e353
SSDEEP

6144:NSTjdu2WbNXH08to+cgMHV/GuS0SjF8498Cr/uEMtK+pVPGQMTK5N+9YK0:QTjdONjq+cbdzS0SmyYKVG5U9YK

Score

N/A

Malware Config

Signatures

Files

shipping doc.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 454KB - Virtual size: 454KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy