RFQ2[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

RFQ2.exe
Size

4.6MB
MD5

fab2cc9e8a64f905fb0e84ac8f014bee
SHA1

4cd94c381554f8a2ed956acb5b073c4f5a704de1
SHA256

df921c4f173a6bd6fe0b347f2494ff8c2c4a5407de343e87061e43b89890a712
SHA512

a2e7b01dea7c801f34a54fa70de812d032263eccf5f21fd9b5b1bdc448f63c363dfb84b88b275fe2129a7403b2ea3381ec1561d484db43387897f56daf92df9a
SSDEEP

49152:uD/knfTs+mL/LQHL+G7JVmlyWTl2rYJyINJf+Wymt0dkCKOuzqubg7m:8/0fTs

Score

1^/10

Malware Config

Signatures

Files

RFQ2.exe
.exe windows x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 4.5MB - Virtual size: 4.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 54KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ