Static task
static1
Behavioral task
behavioral1
Sample
IMG-SCAN28202209.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
IMG-SCAN28202209.exe
Resource
win10v2004-20220812-en
General
-
Target
გადახდის შეტყობინება.msg
-
Size
1.2MB
-
MD5
9f4f23716cd09eff651a9055155d2937
-
SHA1
25c1ab595815f198def12173d3c1b14620913522
-
SHA256
4ce1f830db2e5195e1b9242fef348c67527b4235d7afd3eebfab675b89597f3d
-
SHA512
3444b438efcb7df33c4690161dcc019b3b9829f89ee7fb37e64f0aca0a78365a3b36256d4e900b7e6d3561af4e5a224f9bf44add44830dde7d5c2e23468b6866
-
SSDEEP
1536:RnQCfuYCj6pErd4RGg2UBDdvlid74PpQL9pW:+CfukAg2sRvlid0PpQLXW
Malware Config
Signatures
Files
-
გადახდის შეტყობინება.msg.msg
-
http://www.tbcbank.ge
-
http://tbcbank.ge
-
-
IMG-SCAN28202209.PDF.JPG.ISO.iso
-
IMG-SCAN28202209.exe.exe windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 18KB - Virtual size: 17KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
tbc.png.png