Quotation[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Quotation.exe
Size

1022KB
MD5

a1cf8dbf95408e9d93c009d23d9d01cb
SHA1

79b71d0a4af85b310e5ec4ccfb3591a48b4228cf
SHA256

c117bb5751dbaee9a3036d8481ede0d8f2b0049a1819d9cb61a8310d2e6fea5b
SHA512

2c4f7b1c19dbe7321f0af7334a54e266416e378f1280b6a3220fd33df6c85bb813e8becb35faa2d1a4cef5b7cff32624b7b918255178df429429fbd33fbfbc14
SSDEEP

24576:312zVZ97yimdcyO7yPgHO3MFqvj5nuxJ:3AR37HJyCTEyqvtq

Score

1^/10

Malware Config

Signatures

Files

Quotation.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1020KB - Virtual size: 1019KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ