Static task
static1
Behavioral task
behavioral1
Sample
Confirmaci?n de pago.pdf.exe
Resource
win7-20220715-en
General
-
Target
4184ca1e5732bedc5d0053cbc95f7792-sample.zip
-
Size
565KB
-
MD5
7336838c0b37763faa7e88f7454a2283
-
SHA1
c8b732d0679990abaae2f6e8d09964541a9195e9
-
SHA256
fe6881ed33614e4bad0b45c0500ca544a65ddd0efe2a8b8fc1e5b605bec9ec5c
-
SHA512
93d28dc09ba165d8f3b4be425daa6c463ab7421734d7046400a36fce30e759c7e591b1fbfbc74123b8be21b3c64e483df0e52c169d4717ee0fa57975e562ff59
-
SSDEEP
12288:VJwq4WUwxciILoH5Ye05jFlYTrO3/Q22E4NI0UAAZSzGk1scFSPDg7c:VF1cEH5PoyI2E4NI0xTsYSPsc
Malware Config
Signatures
Files
-
4184ca1e5732bedc5d0053cbc95f7792-sample.zip.zip
Password: infected
-
Confirmaci?n de pago.pdf.exe.exe windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 697KB - Virtual size: 696KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 896B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ