Quote_Downer_Group_26-04-2023[.]exe[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Quote_Downer_Group_26-04-2023.exe.bin
Size

479KB
MD5

7b18b4643f0e33054b38e1bbb8d93e4a
SHA1

478e5911572772937a991ed81d84715b91211a2c
SHA256

ffdb9d1f978a1e37f7542e8442660ae01e7918d3500ea62676604d4b596c2d96
SHA512

e80522e8145a898081466c3a6c04e61c9e36e6888b3c713bc21408010514616824074559ce25b87a3dd60672dfc4c60b7edcbadcb70a74f02e1323333478d67a
SSDEEP

6144:ODfMGRzycXmOlINSe1pGs03kL2EOgiRMayC8fN7B/D1Xy21Q5zySf/IN:O7MGZmmSJY3kLHIKag1DhpqFNf/U

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Quote_Downer_Group_26-04-2023.exe.bin

Files

Quote_Downer_Group_26-04-2023.exe.bin
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 474KB - Virtual size: 474KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ