Invoice_10-12_document_5683[.]iso

Sharing

Copy URL Twitter E-mail

General

Target

Invoice_10-12_document_5683.iso
Size

578KB
MD5

a211c21a2cdc11b85146d1898b8bf138
SHA1

05e55d9383298dd8ff3094252feaee125aa75a99
SHA256

f573636f3f02eb2cdd2e433a80b601fb52d2fc498b1ca0b8aede088f3cf06766
SHA512

09257c08176f0ade7305a7c98230ee66b86d41fafd98991b03e2b918313cb947481015bc4c46f6fd92dd5ee20ffecf0ed8ead0a0bb8fbaf1b361a2875da7d402
SSDEEP

12288:0O9uOg7HHHNHH8yk+gVLUJ6OBwTONOJOPwe4OqswlwLwJAwHHHXQj:A7HHHNHHlk+QOtwMwvswlwLwJAwHHH

Score

N/A

Malware Config

Signatures

Files

Invoice_10-12_document_5683.iso
.iso
documents.lnk
.lnk
knobbed/blackens.jpg
.jpg
knobbed/chronicled.txt
knobbed/detonate.cmd
.cmd .vbs
knobbed/microns.jpg
.jpg
knobbed/scarceness.txt
knobbed/yew.dat
.dll windows x64

e40cf80aaf6b4946f098a48a00102f7c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

GetConsoleCP
GetConsoleMode
ReadConsoleInputA
FillConsoleOutputCharacterW
FillConsoleOutputAttribute
SetConsoleOutputCP
GetConsoleScreenBufferInfo
CreateEventA
SetConsoleCursorPosition
SetConsoleTextAttribute
SetConsoleWindowInfo
ScrollConsoleScreenBufferW
ReadConsoleOutputA
SetConsoleTitleW
GetConsoleDisplayMode
VirtualAlloc
SetConsoleScreenBufferSize
WaitForSingleObject

gdi32

AbortPath
CreatePenIndirect

uxtheme

GetThemeSysString
GetThemeFont
GetCurrentThemeName

usp10

ScriptString_pLogAttr
ScriptGetCMap

msvfw32

ICLocate
ICGetInfo
ICSeqCompressFrameEnd

Exports

Exports

DWootrqbIdrSLPf
DeKNvEnahiTOeNI
OWEoLkfVhsviq
QbyXLOCURARpA
XyThCDCzvZgn
cLNVrHHGALQR
hzqHPSqOZKofzvo
jNPKsgTiINbb
jbQNfUWuZRjnd
kekcFnQUSYX
nQkpOWbVKZju
rfHFiwFqEGGABrqa
skumxhsXVggYCxQ
tnsjuyagsdbhjngjifomajduahy
vYbiCBZhzKnBP
yNGJNZsHabfy

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e40cf80aaf6b4946f098a48a00102f7c

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

gdi32

uxtheme

usp10

msvfw32

Exports

Exports

Sections

.text Size: 7KB - Virtual size: 6KB

.rdata Size: 36KB - Virtual size: 35KB

.data Size: 20KB - Virtual size: 20KB

.text
Size: 7KB - Virtual size: 6KB

.rdata
Size: 36KB - Virtual size: 35KB

.data
Size: 20KB - Virtual size: 20KB