Invoice-32235 (3)[.]zip

Resubmissions

11/06/2022, 13:38

220611-qxsm5sbaa9 10

30/03/2022, 15:09

220330-sjyncadcd5 9

Sharing

Copy URL

Twitter E-mail

General

Target

Invoice-32235 (3).zip
Size

1.8MB
MD5

b0e98d7d30d1b9c82734b153efcc1d53
SHA1

8f7bb34d8393898976982c22399619790f7a9421
SHA256

8149cfdaf8eb8c810c0439a3461c62f032b268448b6054a78157a425a4ce679c
SHA512

b3fcceceeb43a214de3bb442c072c35a8d4df642508cd47e5fc71a624ba5d73e00e6eb6221b948e7c58e0d19fbf565ca53098ca08ac807884049bd08d457103e
SSDEEP

49152:9TJo8q0R+GijqZmiD+mgk2QIgwIPXtRC8QZjQyPBa/h5s6/jI92aQ:m0R+GwQmm+o27gn70ZjXo/t/jI92aQ

Score

N/A

Malware Config

Signatures

Files

Invoice-32235 (3).zip
.zip
Invoice-32235.iso
.iso
appbuild.exe
.exe windows x64

21b7480d33b45dac6a2ecf361c7f6566

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

HeapAlloc
LCMapStringA
GetProcessHeap
HeapFree
WaitNamedPipeA
GetCurrentThreadId
lstrcatA
DeactivateActCtx
FlushConsoleInputBuffer
ExitProcess
GetPrivateProfileStructA
FindNextFileA
GetPrivateProfileStructW
GetConsoleMode
SetVolumeLabelA
DuplicateHandle
SetTimerQueueTimer
GetBinaryTypeA
GetConsoleCP
LoadLibraryA
GetProcAddress
CreateProcessW
SetNamedPipeHandleState
SetConsoleTitleA
PeekConsoleInputW
LoadLibraryW
CreateMutexA
VirtualProtect
GetLogicalDrives
ChangeTimerQueueTimer
PowerSetRequest
GetProfileStringA
LocalFileTimeToFileTime
WriteProfileSectionW

user32

CallMsgFilterW
PackDDElParam
GetNextDlgTabItem
PostMessageW
DdeConnect
DispatchMessageW
GetThreadDesktop
DrawMenuBar
SetForegroundWindow
MessageBoxIndirectA
DialogBoxParamW
AnimateWindow
CreateAcceleratorTableA
GetMenuStringA
EnumDisplayMonitors
SetCursorPos
ToUnicode
CreateCursor
GetOpenClipboardWindow
CharUpperBuffW
EnumDisplaySettingsA
CloseDesktop
IsProcessDPIAware
TileWindows

gdi32

GdiSetBatchLimit
GetGraphicsMode
AddFontResourceA
GetMetaFileA
GetDCBrushColor
D3DKMTFlipOverlay
ScaleWindowExtEx

shell32

ord134
SHBindToFolderIDListParent
SHCreateQueryCancelAutoPlayMoniker
SHPathPrepareForWriteA
SHGetDiskFreeSpaceExW
ord743

ole32

ObjectStublessClient12
CoUnmarshalInterface
ObjectStublessClient19
ObjectStublessClient32
HBITMAP_UserSize

Sections

.text
Size: 65KB - Virtual size: 65KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 456B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
documents.lnk
.lnk

Resubmissions

Sharing

General

Malware Config

Signatures

Files

21b7480d33b45dac6a2ecf361c7f6566

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

shell32

ole32

Sections

.text Size: 65KB - Virtual size: 65KB

.rdata Size: 1.3MB - Virtual size: 1.3MB

.data Size: 1.6MB - Virtual size: 1.6MB

.pdata Size: 512B - Virtual size: 456B

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 65KB - Virtual size: 65KB

.rdata
Size: 1.3MB - Virtual size: 1.3MB

.data
Size: 1.6MB - Virtual size: 1.6MB

.pdata
Size: 512B - Virtual size: 456B

.rsrc
Size: 4KB - Virtual size: 3KB