Static task
static1
Behavioral task
behavioral1
Sample
QUOTATION#00439.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
QUOTATION#00439.exe
Resource
win10v2004-20241007-en
General
-
Target
cd33d31a9816f7f440815d04335a4635539ee94a238968c594a1af85b08f9d0d
-
Size
798KB
-
MD5
9a1af5327c1f3a4e960aca3bb999a4ca
-
SHA1
1c7e36e5734c5a57e8168140b6616df5f339a2f4
-
SHA256
cd33d31a9816f7f440815d04335a4635539ee94a238968c594a1af85b08f9d0d
-
SHA512
0f261358c6c859cda54c07ae9b203b7c43ce1d854aa1ab6239af1eee6931c676765f9f2a785cf3c41bdedc01de404bb0ce85bdce347951ce30cb50ec4ad07d3a
-
SSDEEP
24576:NgFshk+z/GCHJUy7RJWQMfTpl/Rh+xZinn:NgFJ5CpVRDSRRh+xZin
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack001/QUOTATION#00439.exe
Files
-
cd33d31a9816f7f440815d04335a4635539ee94a238968c594a1af85b08f9d0d.rar
-
QUOTATION#00439.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 735KB - Virtual size: 735KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 166KB - Virtual size: 166KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ