Overview

overview

10

Static

static

Invoi_PDF.lnk

windows7-x64

3

Invoi_PDF.lnk

windows10-2004-x64

3

ricocheted...ted.js

windows7-x64

3

ricocheted...ted.js

windows10-2004-x64

1

ricocheted...rs.cmd

windows7-x64

1

ricocheted...rs.cmd

windows10-2004-x64

1

ricocheted...ys.dll

windows7-x64

10

ricocheted...ys.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    09-21-2022Invoi_PDF#7540.zip

  • Size

    191KB

  • MD5

    a99dae5201de15b22eed699478432d8a

  • SHA1

    1b50dba26d36de8bc80f36887764a14b49468b63

  • SHA256

    cae719eb6d79919ff8ea80bd07c060e6e6c4e3af346f237495254f72fb049b61

  • SHA512

    cab3d19ac749b948d4b0a07b059492049e196afa6ae38896b1253ae02abe0a3d514dd543c4602ccd800dded85a38febefa0848c0982fababf87846a1e48df0a2

  • SSDEEP

    3072:e7YnnajL9JMc0IpONXymv6oKhUqkIcO6jMvaId/zIRxypbgGttEHmtPGfPOkmey2:ewajL9ASIvgcO4MvaQ/z0Qp8G8GFAOkJ

Score
N/A

Malware Config

Signatures

Files

  • 09-21-2022Invoi_PDF#7540.zip
    .zip

    Password: invoice0921

  • Invoi_PDF#7540.iso
    .iso .js

    Password: invoice0921

  • Invoi_PDF.lnk
    .lnk
  • ricocheted/detonatorUncaptivated.js
    .js
  • ricocheted/falsehood.txt
  • ricocheted/pregnantTitillators.cmd
  • ricocheted/trolleys.db
    .dll .js windows x64

    Password: invoice0921

  • ricocheted/wager.jpg
    .jpg