Static task
static1
General
-
Target
FW_ POSSIBLE FRAUD_ Purchase Order No. BCM190282_Project 2023-01-23T09_54_31+08_00.eml
-
Size
676KB
-
MD5
879cb17ef57ef0ebdca7b654f821a966
-
SHA1
695f355f072a4638575524c22908a3d81f488899
-
SHA256
3059d397df293d2e922f386abaf6cb264005b41274e33fd5b2d909407d6db256
-
SHA512
70e95c18ec8eb157cd99c196e8f5a8a0d8f48cb2aadc31bfb2249a580d240f8cb731f42d180afef2a595ac19ce24b7e746f4077c563a5656f7d4fe6a5fb3e9df
-
SSDEEP
12288:tFZrCIlsx7aQSMBrRzaIBzBeudEd9fjeBEPW/tNQsbFkspBzj6MD+tk2j:HMGW7apGrnBeudEME+/THpl+tkA
Malware Config
Signatures
Files
-
FW_ POSSIBLE FRAUD_ Purchase Order No. BCM190282_Project 2023-01-23T09_54_31+08_00.eml.eml
-
http://www.spinner.eu.com/
-
-
Purchase Order No. BCM190282Project.rar.rar
-
Purchase Order No. BCM190282Project.exe.exe windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 540KB - Virtual size: 537KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 4KB - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
email-html-1.txt.html