Order Confirmation[.]zip | Triage

Submit
Reports

Overview

overview

Static

static

1

Order Conf...on.exe

windows7-x64

3

Order Conf...on.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

Order Confirmation.exe

Resource

win7-20221111-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

Order Confirmation.exe

Resource

win10v2004-20220812-en

agenttesla keylogger spyware stealer trojan

windows10-2004-x64

5 signatures

150 seconds

General

Target

Order Confirmation.zip
Size

13KB
MD5

2aabe71b65d3c08331558907b6932662
SHA1

f3be692fdba75d29f83867f2fb4ff5610055c0bb
SHA256

b0f3c7f5412aa43f2481faacfa79501ec32a0de49f416f2662b22596f1f9d001
SHA512

0d47ed21ff89711a2c858275179d6a9e2f187f985f7b1f79f648091e4eb036de29eb3d2fbda70c09af23e20e16758d52ef6c7f432ab86ff54e1a66cb04608a95
SSDEEP

384:3nRR3ieT9uKxE6LzT0XdJN3obUN/uc9P1HDmrcpAiZm5/:3RtibKx3LzT0NJN6UYUP5qJzJ

Score

1^/10

Malware Config

Signatures

Files

Order Confirmation.zip
.zip
Order Confirmation.exe
.exe windows x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy