Test[.]eml | Triage

Submit
Reports

Overview

overview

Static

static

504-2022-285E.rar

windows10-1703-x64

3

504-2022-285E.exe

windows10-1703-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

504-2022-285E.rar

Resource

win10-20220812-en

windows10-1703-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

504-2022-285E.exe

Resource

win10-20220812-en

formbook ermr rat spyware stealer trojan

windows10-1703-x64

7 signatures

150 seconds

General

Target

Test.eml
Size

317KB
MD5

7430d4bdf3fe887e2cae3ed66b0bad16
SHA1

dd7c96c3753415cc3f84bbd16a980de4caa8370b
SHA256

fc0b038b3931bb1d93280890148fb4d4260e8c70a55438109b9255fcd1422e33
SHA512

f8f45dce3c86427e1c5edcd2e9525dbb344dafb824552ac13147de7059794db16eb336fc1d19ddf8704466ec0ebc61faabc4f6da282eeed1f71a352f7e213493
SSDEEP

6144:5FveAFPO7UfRLLCqvu+d+JZlrhDNgdn3abmNYL1QSk8KTqJ48d0Zr8E9ayL:5FmUO7UZLhGd7hDqJaaI1Q4GZr8EL

Score

N/A

Malware Config

Signatures

Files

Test.eml
.eml
- http://shanemarine.com/
504-2022-285E.rar
.rar
504-2022-285E.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 205KB - Virtual size: 205KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 71KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
email-html-2.txt
.html
email-plain-1.txt

© 2018-2024

Terms | Privacy