General
-
Target
Final_SOA_Remittance_pdf.exe
-
Size
400KB
-
Sample
221004-mss7bsafa7
-
MD5
c62bb46d419468711b5304c4bd062760
-
SHA1
effe10a743d968476dfb979d7a1d0d7d5b453fa1
-
SHA256
5a85a87ee1049fe5ff2bdf482d60ac66f1a21ceda0c983e75900dbb5b779ad2f
-
SHA512
e2ef914d5684a0d08513771dd4867e2e726afa517a0c3f7a61f86f39bc858a46869561260c3f7ebdd92fe794451b146152aa036f48f114f63c710b19d0ed5e6d
-
SSDEEP
6144:lTouKrWBEu3/Z2lpGDHU3ykJ1tC/+vrWmybQVu1kFB3Unt7vK5FVMCZlgBneOC:lToPWBv/cpGrU3y8tGb112B3VFV/EC
Static task
static1
Behavioral task
behavioral1
Sample
Final_SOA_Remittance_pdf.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
Final_SOA_Remittance_pdf.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
Final_SOA_Remittance_pdf.exe
-
Size
400KB
-
MD5
c62bb46d419468711b5304c4bd062760
-
SHA1
effe10a743d968476dfb979d7a1d0d7d5b453fa1
-
SHA256
5a85a87ee1049fe5ff2bdf482d60ac66f1a21ceda0c983e75900dbb5b779ad2f
-
SHA512
e2ef914d5684a0d08513771dd4867e2e726afa517a0c3f7a61f86f39bc858a46869561260c3f7ebdd92fe794451b146152aa036f48f114f63c710b19d0ed5e6d
-
SSDEEP
6144:lTouKrWBEu3/Z2lpGDHU3ykJ1tC/+vrWmybQVu1kFB3Unt7vK5FVMCZlgBneOC:lToPWBv/cpGrU3y8tGb112B3VFV/EC
Score10/10-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Accesses Microsoft Outlook profiles
-
Suspicious use of SetThreadContext
-