RFQs[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

RFQs.exe
Size

480KB
MD5

c4ff2293fba6ef2f2fe7ea38dfd50325
SHA1

28972324754a5b10d88dea76db5537a66beb1db0
SHA256

2157f748110e293b16f3560496fde735779e5d08621b66c42322491f209d6c16
SHA512

a098b6c4c70d74db49a26e89037a85d8ff328075398b92791fc4bfc5fc3af87fd982dfd7e854781b1c3d2ed3d4294e10b30eb047328c567197f7d93fc96b626d
SSDEEP

6144:EpdIFb11DG7aPj3ZQtYYaX2Dd4kMWBL4Jsc3L/S1ZG6S0:y6bXxZvpmx4kMywFb/m

Score

1^/10

Malware Config

Signatures

Files

RFQs.exe
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 811KB - Virtual size: 811KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ