7a8df2f61615c0a14fa3842848c04820[.]zip | Triage

Submit
Reports

Overview

overview

7

Static

static

PO_2300000...df.exe

windows10-1703-x64

7

PO_2300000...df.exe

windows7-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

PO_2300000000010134016_IDD230004898876-pdf.exe

Resource

win10-20220812-en

collection spyware stealer

windows10-1703-x64

9 signatures

300 seconds

Behavioral task

behavioral2

Sample

PO_2300000000010134016_IDD230004898876-pdf.exe

Resource

win7-20221111-en

windows7-x64

3 signatures

300 seconds

General

Target

7a8df2f61615c0a14fa3842848c04820.zip
Size

702KB
MD5

026dabf693ca494fa82ec638d919d20a
SHA1

afc4552e8fd4c0a8ce3ddfce366068417f6206bb
SHA256

877cb4363f98fa01fde325c33cd8e242146420d14aed652eb72098920702f836
SHA512

b8402e1eb58aa671d9b110c9376b5f863a68e5515fac4fbae7de9b65e8849b48004eb1b9bbb4858544a1cd494829dae77ea814090761650759148706a9a3f4a5
SSDEEP

12288:PuohOs+WCFgJQ3tVgXyqEdqLaMt3q6pN5fn9az8OWDBun3V21X4vc1YzgTfrmMjI:WoUv5qyiaMt6aFqWtuFpk153+

Score

N/A

Malware Config

Signatures

Files

7a8df2f61615c0a14fa3842848c04820.zip
.zip

Password: infected
7a8df2f61615c0a14fa3842848c04820
.gz

Password: infected
PO_2300000000010134016_IDD230004898876-pdf.com
.exe windows x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 879KB - Virtual size: 878KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 968B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy