PO 4500022412[.]r15 | Triage

Submit
Reports

Overview

overview

Static

static

1

PO 4500022412.exe

windows7-x64

3

PO 4500022412.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

PO 4500022412.exe

Resource

win7-20221111-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

PO 4500022412.exe

Resource

win10v2004-20221111-en

agenttesla collection keylogger spyware stealer trojan

windows10-2004-x64

9 signatures

150 seconds

General

Target

PO 4500022412.r15
Size

13KB
MD5

d0b5157a6912bb9e22bcee4a62795fdc
SHA1

2bbe7f83485ae00a13d25adc60609d84740b6172
SHA256

4b2fb9cf30f2decd8a519fe93881ff94b368f69c87570060133201ed4925d193
SHA512

4d89dbd08431a673ef713647eb2b2258c6857057da41a19db1f6f9a60664a9f470b373d629505aeceb0efada219143891eae806960c59a80685bda566356bf6d
SSDEEP

384:JTX+nJN2sJxxzIuSL+cUvVkDTIpo7LFiPU/:JTWRJH7SyDyDT2qV

Score

1^/10

Malware Config

Signatures

Files

PO 4500022412.r15
.rar
PO 4500022412.exe
.exe windows x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy