CONSULTA ORDENPDFPDF[.]exe | Triage

Submit
Reports

Overview

overview

Static

static

CONSULTA O...DF.exe

windows7-x64

CONSULTA O...DF.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

CONSULTA ORDENPDFPDF.exe

Resource

win7-20220812-en

lokibot collection spyware stealer trojan

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

CONSULTA ORDENPDFPDF.exe

Resource

win10v2004-20220812-en

lokibot collection spyware stealer trojan

windows10-2004-x64

10 signatures

150 seconds

General

Target

CONSULTA ORDENPDFPDF.exe
Size

835KB
MD5

870a16184dd6bef1df363703be1090b4
SHA1

ef31cbf126f7a86dd05c49bdc3a16823d575bb4d
SHA256

99b4d24066379d58596752045dcb9f88cf184c7752fe571d9181f1e9ce7c3b86
SHA512

defcb10df9a6a409f3004a8695170b1baf95800bacece15d6cca03a71e26f40d09530e4587ab0043957f8cc4148f2c78bef8426357b4c87a35cd68dc7c4d38ef
SSDEEP

12288:uuwWOe5MYKlzbIclDmYDb3rZRCzdVP9cpDMR/:SWMHn7ly2b3rZRCzDPDR/

Score

N/A

Malware Config

Signatures

Files

CONSULTA ORDENPDFPDF.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 833KB - Virtual size: 832KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 896B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy