PO-000161[.]exe | Triage

Submit
Reports

Overview

overview

Static

static

PO-000161.exe

windows7-x64

PO-000161.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

PO-000161.exe

Resource

win7-20220901-en

agenttesla collection keylogger spyware stealer trojan

windows7-x64

15 signatures

150 seconds

Behavioral task

behavioral2

Sample

PO-000161.exe

Resource

win10v2004-20220901-en

agenttesla collection keylogger spyware stealer trojan

windows10-2004-x64

16 signatures

150 seconds

General

Target

PO-000161.exe
Size

870KB
MD5

909b1743dc6e451ab7db216f26b52bde
SHA1

7153ad37069cc0b9fc26b59f3e4e479916c72584
SHA256

e8a5765337996b5641061728075dc4432dc4809ca48e25d624f63e33962cbef7
SHA512

331adcc0f7bb9826d21f084b69a51291c8414a49d087d2e63564c555f69c53f1a6ecaa0e8eefda4c864866e7b7561ceb4bd165364cd67694e1f3fa2e534b3996
SSDEEP

12288:coQgKZ/nXt7virmWhlGLaQYIOjGBhYMMobm1SN70v1GyxaW4bgIp9q6oyu8WmJd:RjGBhYMMosE7w1OW4b4mu8Hawu

Score

N/A

Malware Config

Signatures

Files

PO-000161.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 868KB - Virtual size: 867KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy