Static task
static1
Behavioral task
behavioral1
Sample
JO37GDDJF5_ETRANSFER_RECEIPT.exe
Resource
win7-20220414-en
General
-
Target
7583326122.zip
-
Size
1.5MB
-
MD5
ec6ae7630e34f36f4ba9e82f4c9f23f4
-
SHA1
b1898e885461adc9ad7b60bf47f7423589cd67ab
-
SHA256
8c76fb918a3b6c197a9638bcbc03b1dc85606c256e04d919b5d9739b556e2ef0
-
SHA512
64429e441d8cba57aa09f86228f50f8e319cf6aa15a41e9f32c9bbdbe1d9c7cc5ce543c34e78162d790e2b0f9274c49052feca37ac32120a2abaed6d14b4a929
-
SSDEEP
24576:Pf2N2fRLMbpn/4Y3Ytg6Wq0jyjKQLbAKz1F5ZPUV2ojJeYCJoj2oUs21kok:s42bl//YtbayjKQLkU1YbJeXExUsH
Malware Config
Signatures
Files
-
7583326122.zip.zip
Password: infected
-
2ae7fb5d0ccbcc2a62088cc677f8f4dc98aae224b33dfba32c395c3bddb0a192.zip
Password: infected
-
JO37GDDJF5_ETRANSFER_RECEIPT.iso.iso
Password: infected
-
JO37GDDJF5_ETRANSFER_RECEIPT.exe.exe windows x86
Password: infected
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 1.5MB - Virtual size: 1.5MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 56KB - Virtual size: 56KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ