127a71b138122cfe8acd45eb8d123c7e8d2254619545491982822e9024ee609c | Triage

Submit
Reports

Overview

overview

7

Static

static

2014_11rec...df.exe

windows7-x64

7

2014_11rec...df.exe

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

2014_11rechnungonline_pdf_vodafone_0095890374_537999190_82135674.pdf.exe

Resource

win7-20221111-en

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

2014_11rechnungonline_pdf_vodafone_0095890374_537999190_82135674.pdf.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

3 signatures

150 seconds

General

Target

127a71b138122cfe8acd45eb8d123c7e8d2254619545491982822e9024ee609c
Size

212KB
MD5

e63cf0029d3418e097e245e555a53584
SHA1

3b9a9b474cb4380f4c7d32ccd681fc1ebf38ea0d
SHA256

127a71b138122cfe8acd45eb8d123c7e8d2254619545491982822e9024ee609c
SHA512

71dbb12616e81738f6f446031fd6794debc8c1128535b7ce9155932c50dcf3aefde42c7ae38b8e1b536541907d927e550d595d1e001ef49dfb77cc7e96f1d572
SSDEEP

3072:98QgunHJ8VsY/PvNAyD7b8NhoFIDOZFn34PnnZFMY9A8ChGl8Zdi0JPY9ExCcjtY:SunHAXZ7bYUfoP4YahGMDJsExk4wcG7

Score

N/A

Malware Config

Signatures

Files

127a71b138122cfe8acd45eb8d123c7e8d2254619545491982822e9024ee609c
.zip
2014_11rechnungonline_pdf_vodafone_0095890374_537999190_82135674.pdf.exe
.exe windows x86

328fdcda55996419f0e7ac9a4a8ec4a6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msdtcprx

DTC_XaCommit

mydocs

DllGetClassObject

msvbvm60

rtcEnvironBstr
__vbaAptOffset
__vbaObjVar
__vbaFileOpen
__vbaCyFix
__vbaI2Str
rtcInputCharCount
rtcCommandBstr

kernel32

GetProcAddress
AddAtomW
lstrcmpW
lstrlenA
VirtualAlloc
LoadLibraryA
GetVersion
GetFileAttributesW
CopyFileA
AddAtomA

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 660B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 275KB - Virtual size: 274KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 940B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy