AtiSupplies RFQ against ENQ NO-P1503010[.]img | Triage

Submit
Reports

Overview

overview

Static

static

ACHUBABALO.exe

windows7-x64

ACHUBABALO.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

ACHUBABALO.exe

Resource

win7-20221111-en

remcos mimi persistence rat

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

ACHUBABALO.exe

Resource

win10v2004-20221111-en

remcos mimi persistence rat

windows10-2004-x64

8 signatures

150 seconds

General

Target

AtiSupplies RFQ against ENQ NO-P1503010.img
Size

2.4MB
MD5

a0e2d28e24f63ca1190536b0e7acd1e6
SHA1

52830faa9b9c87c272e6ba8896e0aefc2a61c31f
SHA256

b1e3651ef40eaf11bc8471fa88d0f743d41bbca9d71c65271581076e55dd1899
SHA512

cae619032fe4274f4ea17f876ccc72ed101be7a8b6a6eaa12f3ebb9db0191cda00bb50c24f5a1a821c254608b6ac71105e0d342fa7c74723f6d8b3a847508a7a
SSDEEP

49152:cI0qyQ4xwGa38JIhZrOrJ/DpKzPW5NJV050+aZTzJRAle:+VMI/DaP09FTlae

Score

N/A

Malware Config

Signatures

Files

AtiSupplies RFQ against ENQ NO-P1503010.img
.iso
ACHUBABALO.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy