REVISED ORDER FOR DECEMBER[.]lzh | Triage

Submit
Reports

Overview

overview

Static

static

REVISED OR...ER.exe

windows7-x64

REVISED OR...ER.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

REVISED ORDER FOR DECEMBER.exe

Resource

win7-20220812-en

formbook f9r5 rat spyware stealer trojan

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

REVISED ORDER FOR DECEMBER.exe

Resource

win10v2004-20220812-en

formbook f9r5 rat spyware stealer trojan

windows10-2004-x64

11 signatures

150 seconds

General

Target

REVISED ORDER FOR DECEMBER.lzh
Size

443KB
MD5

c8f6dc207e64282e9f114f881fef1779
SHA1

dd6a42fee900c1a192b0fbf85c82651d90550f8e
SHA256

9c299ded0d032383e9335646319295fe1d1e9c6c0165d784a4d00772de1dbcea
SHA512

1c823319cdb5c4183bc8fa4626fbf3d8425b7611cffc6eb316864f47c291542bd5541ec1dfbb6e76389259766f7b218c4d87cf088360c90da5160ad77420b73e
SSDEEP

12288:k2MjPiQURz4WGylJYnn5L5J7wBVKVFAxlbnnT7pn:5MjqRPly56BVKYPbnR

Score

N/A

Malware Config

Signatures

Files

REVISED ORDER FOR DECEMBER.lzh
.lzh
REVISED ORDER FOR DECEMBER.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 571KB - Virtual size: 570KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy