Static task
static1
Behavioral task
behavioral1
Sample
BANK RECEIPT.exe
Resource
win7v20210410
Behavioral task
behavioral2
Sample
BANK RECEIPT.exe
Resource
win10v20210410
Behavioral task
behavioral3
Sample
PO.exe
Resource
win7v20210408
Behavioral task
behavioral4
Sample
PO.exe
Resource
win10v20210408
Behavioral task
behavioral5
Sample
STATEMENT OF ACCOUNT.exe
Resource
win7v20210410
Behavioral task
behavioral6
Sample
STATEMENT OF ACCOUNT.exe
Resource
win10v20210410
General
-
Target
r.rar
-
Size
759KB
-
MD5
61c631192561a35a471641ea076348aa
-
SHA1
f2848a5ab08673d467ecef0709b9c93f74a0aa18
-
SHA256
1ebcadef0f2790a5c28cc8d6100007eb6a82a0cf7fc582e7595fa9a3407d3049
-
SHA512
795d8401fe49a7cefd1ede1e365f030f005bad5a88db4114dafaf697ae535c94bfbe1982e47e007daf565e284596792d27af05fd4bfb55d7554d6e0b7b70dcde
Malware Config
Signatures
-
NSIS installer 6 IoCs
Processes:
resource yara_rule static1/unpack001/BANK RECEIPT.exe nsis_installer_1 static1/unpack001/BANK RECEIPT.exe nsis_installer_2 static1/unpack001/PO.exe nsis_installer_1 static1/unpack001/PO.exe nsis_installer_2 static1/unpack001/STATEMENT OF ACCOUNT.exe nsis_installer_1 static1/unpack001/STATEMENT OF ACCOUNT.exe nsis_installer_2
Files
-
r.rar.rar
-
BANK RECEIPT.exe.exe windows x86
-
PO.exe.exe windows x86
-
STATEMENT OF ACCOUNT.exe.exe windows x86