invoice[.]iso | Triage

Sharing

Copy URL Twitter E-mail

General

Target

invoice.iso
Size

898KB
MD5

8fdc97c88101719c85dfeab859ad58d8
SHA1

59984878131f35bfed85a5f9f3464786532e9220
SHA256

ab3ac2a34c3a3641a1cb1a52d615cfb50cf308e90ed4acea48a7cd1a0fe92c40
SHA512

c6849c6bcca9ad50728ec6b74f8dc0e6f00d91716dd1a236154f6febc70fb8afbd1703e1de7d050076b4358bee5ba35f3ce5b1d17587ded8419554198f4e9645
SSDEEP

24576:/Qy9woBwJwJHcVlBZkyFvIJPjhslVlBZkyFvIJPjhszwoBwJwJH:V9woBwJwJHcVlHkbjhslVlHkbjhszwoR

Score

N/A

Malware Config

Signatures

Files

invoice.iso
.iso
GLANCE/AIRLINE.DAT
.dll windows x64

082f8c5beaac2dc92f43b820de36dfb1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

FillConsoleOutputCharacterW
FillConsoleOutputAttribute
SetConsoleOutputCP
GetConsoleScreenBufferInfo
SetConsoleScreenBufferSize
GetConsoleMode
SetConsoleTextAttribute
SetConsoleWindowInfo
ScrollConsoleScreenBufferW
ReadConsoleOutputW
SetConsoleTitleW
GetConsoleDisplayMode
ReadConsoleInputW
GetConsoleCP
VirtualAlloc
CreateEventA
SetConsoleCursorPosition
WaitForSingleObject

gdi32

AbortPath
EnumMetaFile
ExcludeClipRect
CreateBitmapIndirect
AbortDoc

uxtheme

GetThemeSysInt
GetWindowTheme

msvfw32

DrawDibChangePalette
ICGetDisplayFormat
ICCompress
ICOpen

Exports

Exports

ChJLTTPGFqRwv
OGxJkOsSGGhWy
PJismFffhewxRk
RgMkdeUTdozR
TaxfumrWUeqeaPuF
TzNeozxCBGbpLp
XzUwVEjGOIVCHuOn
bAYwSkSIvFDXiHj
bhunnnnduahsdiojasdygajakss
eryHrRkIgwai
fONlKXYJrEZn
gLKvXCQqnyDnjYLd
pzTEyZuFoxxghTco
xaqXVBQvouzVpqWu

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
GLANCE/EXECUTE.TXT
GLANCE/FDA.PNG
.png
GLANCE/HEADS.PNG
.png
GLANCE/MINUS.cmd
GLANCE/ROADS.TXT
GLANCE/SPANK.TXT
GLANCE/WISE.TXT
invdocs.doc.lnk
.lnk

Sharing

General

Malware Config

Signatures

Files

082f8c5beaac2dc92f43b820de36dfb1

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

gdi32

uxtheme

msvfw32

Exports

Exports

Sections

.text Size: 7KB - Virtual size: 6KB

.rdata Size: 36KB - Virtual size: 35KB

.data Size: 20KB - Virtual size: 20KB

.rsrc Size: 512B - Virtual size: 480B

.text
Size: 7KB - Virtual size: 6KB

.rdata
Size: 36KB - Virtual size: 35KB

.data
Size: 20KB - Virtual size: 20KB

.rsrc
Size: 512B - Virtual size: 480B