Usted posee una obligacion de pago sobre el impuesto IVA año 2022[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

Usted posee una obligacion de pago sobre el impuesto IVA año 2022.exe
Size

800.7MB
MD5

cb49e68fa414b7be3af4b24494756cea
SHA1

11d3578f839ff9d66a13f6c8ea43a55c7b2051f4
SHA256

283d85dfccce09383984f381d677d6718557e84fe8454109700d08b70661160e
SHA512

25b11909ef549b5c3308ca2cd3c9116f047df72078946aa22c74c123411217a9a46ea14557cdfcc111016b9aa24e40377a50aff33c24df1f4bff0d436ec69fb3
SSDEEP

98304:hYXo3baXqqZ/GCt4csVoQeAf+ghM8xzAC2tGc8/gIM0a:hla6Qnsqhe+g7Gzk

Score

N/A

Malware Config

Signatures

Files

Usted posee una obligacion de pago sobre el impuesto IVA año 2022.exe
.exe windows x64

b95eb4a501259204ebd9ddba5fe72954

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

advapi32

GetTokenInformation

iphlpapi

FreeMibTable

netapi32

NetApiBufferFree

ntdll

NtQueryInformationProcess

ole32

CoCreateInstance

oleaut32

SysAllocString

pdh

PdhAddEnglishCounterA

powrprof

CallNtPowerInformation

psapi

EnumProcessModulesEx

secur32

LsaEnumerateLogonSessions

shell32

CommandLineToArgvW

ws2_32

WSACleanup

bcrypt

BCryptCloseAlgorithmProvider

kernel32

AcquireSRWLockExclusive
LocalAlloc
LocalFree
GetModuleFileNameW
ExitProcess
LoadLibraryA
GetModuleHandleA
GetProcAddress

msvcrt

__getmainargs

userenv

GetUserProfileDirectoryW

Sections

.text
Size: - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 896B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 299KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: - Virtual size: 120B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zuhf0
Size: - Virtual size: 168KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zuhf1
Size: - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.zuhf2
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zuhf3
Size: 4.2MB - Virtual size: 4.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 204B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 169KB - Virtual size: 168KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b95eb4a501259204ebd9ddba5fe72954

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

iphlpapi

netapi32

ntdll

ole32

oleaut32

pdh

powrprof

psapi

secur32

shell32

ws2_32

bcrypt

kernel32

msvcrt

userenv

Sections

.text Size: - Virtual size: 1.1MB

.data Size: - Virtual size: 896B

.rdata Size: - Virtual size: 299KB

.pdata Size: - Virtual size: 37KB

.xdata Size: - Virtual size: 65KB

.bss Size: - Virtual size: 2KB

.idata Size: - Virtual size: 10KB

.CRT Size: - Virtual size: 120B

.tls Size: - Virtual size: 16B

.zuhf0 Size: - Virtual size: 168KB

.zuhf1 Size: - Virtual size: 1.5MB

.zuhf2 Size: 3KB - Virtual size: 2KB

.zuhf3 Size: 4.2MB - Virtual size: 4.2MB

.reloc Size: 512B - Virtual size: 204B

.rsrc Size: 169KB - Virtual size: 168KB

.text
Size: - Virtual size: 1.1MB

.data
Size: - Virtual size: 896B

.rdata
Size: - Virtual size: 299KB

.pdata
Size: - Virtual size: 37KB

.xdata
Size: - Virtual size: 65KB

.bss
Size: - Virtual size: 2KB

.idata
Size: - Virtual size: 10KB

.CRT
Size: - Virtual size: 120B

.tls
Size: - Virtual size: 16B

.zuhf0
Size: - Virtual size: 168KB

.zuhf1
Size: - Virtual size: 1.5MB

.zuhf2
Size: 3KB - Virtual size: 2KB

.zuhf3
Size: 4.2MB - Virtual size: 4.2MB

.reloc
Size: 512B - Virtual size: 204B

.rsrc
Size: 169KB - Virtual size: 168KB