General
-
Target
INVOICE-26.exe
-
Size
444KB
-
Sample
210426-8n5dvbkg5e
-
MD5
55fa247362c8d44eb5c1aca6e671d894
-
SHA1
71a8a5588dde3a595d1522e2f8aa5e8e328c57e7
-
SHA256
5cd263243369cc7338a221f416328bf7c1be1d648ddf3485eaf6e7cbb0016149
-
SHA512
831f882647c633261354ee9c29861c1b15af2ab8794ccd33425c36894df52a53cd919f81f28aef4dab08e152e1046536a2fb2e83dc3090ab9c680ea5f3c9bbbf
Static task
static1
Behavioral task
behavioral1
Sample
INVOICE-26.exe
Resource
win7v20210410
Behavioral task
behavioral2
Sample
INVOICE-26.exe
Resource
win10v20210408
Malware Config
Targets
-
-
Target
INVOICE-26.exe
-
Size
444KB
-
MD5
55fa247362c8d44eb5c1aca6e671d894
-
SHA1
71a8a5588dde3a595d1522e2f8aa5e8e328c57e7
-
SHA256
5cd263243369cc7338a221f416328bf7c1be1d648ddf3485eaf6e7cbb0016149
-
SHA512
831f882647c633261354ee9c29861c1b15af2ab8794ccd33425c36894df52a53cd919f81f28aef4dab08e152e1046536a2fb2e83dc3090ab9c680ea5f3c9bbbf
Score7/10-
Obfuscated with Agile.Net obfuscator
Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.
-
Suspicious use of SetThreadContext
-