Static task
static1
Behavioral task
behavioral1
Sample
Quotation CTT5684.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
Quotation CTT5684.exe
Resource
win10v2004-20221111-en
General
-
Target
322d2fdb6bdefc516d4be643bce9f464abdaf8aa24d50ac30bcf9d59d084c8a1
-
Size
269KB
-
MD5
f61e07061a9240bcc953a8a51aca7145
-
SHA1
3d209df832fef255d971c7c3f9d71ffda29a06b5
-
SHA256
322d2fdb6bdefc516d4be643bce9f464abdaf8aa24d50ac30bcf9d59d084c8a1
-
SHA512
c0e0e9d2cfaaf252b3401ab44d695ff895b6cefad0e0692df2b2577356546a7803eb8579aa95f297a4640b3ebeb12b9a47fd9dbc5b01ff5957523c547e721aac
-
SSDEEP
6144:U8vJG2WGCVV+qyb6UPPWdRTdPfLipUwCzoNeEKFAqBOPjnkXbT:UYJIXVVbY6UPP6RTdPBwNeE+QbO
Malware Config
Signatures
Files
-
322d2fdb6bdefc516d4be643bce9f464abdaf8aa24d50ac30bcf9d59d084c8a1.ace
-
out.ace.ace
-
Quotation CTT5684.exe.exe windows x86
e933978fcc3737af1cc3a114cc319085
Code Sign
01Certificate
IssuerCN=SST software 2017 (r),O=Sea scanner tools (c),C=GRNot Before04-04-2019 06:44Not After03-04-2022 06:44SubjectCN=SST software 2017 (r),O=Sea scanner tools (c),C=GR7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12Certificate
IssuerCN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=USNot Before12-01-2016 00:00Not After11-01-2031 23:59SubjectCN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12Certificate
IssuerCN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=USNot Before23-12-2017 00:00Not After22-03-2029 23:59SubjectCN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=USExtended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
5a:19:a1:ec:be:27:82:13:b0:65:96:74:e3:90:e8:f2:5f:ed:f5:29:40:59:bf:65:ee:f9:c9:95:df:e3:ff:26Signer
Actual PE Digest5a:19:a1:ec:be:27:82:13:b0:65:96:74:e3:90:e8:f2:5f:ed:f5:29:40:59:bf:65:ee:f9:c9:95:df:e3:ff:26Digest Algorithmsha256PE Digest MatchestrueSignature Validations
TrustedfalseVerification
Signing CertificateCN=SST software 2017 (r),O=Sea scanner tools (c),C=GR04-04-2019 09:17 Valid: false
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
msvbvm60
MethCallEngine
EVENT_SINK_AddRef
ord673
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord645
ord575
ord100
Sections
.text Size: 564KB - Virtual size: 561KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: - Virtual size: 22KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ