Quotation[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Quotation.exe
Size

1.9MB
MD5

b8baee902c7bf7ac658052892324bc5a
SHA1

11de7a33f124ce1639e4bed05161a2921b015708
SHA256

15093c3037d3949fb360a3dc48d61991985b940fb9b67eaaaf1b5f229e695b66
SHA512

0681b6d1785f4a7f76de209b77f7c193b01e78f040c70f4fe918807813d44735ac1491a8ad7d29b8765878fe9e891cc58cc714714a02187efce9999fc1235e21
SSDEEP

24576:NopfWyN8o8lcdQTNCMRI2+aVi2rBZZof36nnjqKoe8:i/SBRRMEICjqKoe8

Score

1^/10

Malware Config

Signatures

Files

Quotation.exe
.exe windows x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 220KB - Virtual size: 220KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ