Overview

overview

7

Static

static

1

Purchase O...K).exe

windows7-x64

5

Purchase O...K).exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    Purchase Order Specifications for March-2023 update.pdf (253K).zip

  • Size

    958KB

  • Sample

    230330-v9en9sfa8t

  • MD5

    696cc5675e5739ea80ef220253226fee

  • SHA1

    d9746f8d1d98da010eeba5e5f5d6a5b0170dbc20

  • SHA256

    f37bd7b0b40ed2a3272e82a58e4662afacf1a30448743b7d2b5750ed601e3e86

  • SHA512

    82d95a15de4f865cd0f7bcc3374d7ce744a7c4aa93a2a5f4259047c84525a317c295a777103750a738d28e2e66a0936e29ce3ba77eb408e473d7a69fea35b407

  • SSDEEP

    24576:+sROBBndE7IrFJsjDbq/+wnzRYY1yy+NUFjI1j:+jBBb7BpzRYY18qQ

Score
7/10

Malware Config

Targets

    • Target

      Purchase Order Specifications for March-2023 update.pdf (253K).exe

    • Size

      1.2MB

    • MD5

      525b29804499f54683326bd36d358a40

    • SHA1

      11c93e550822f2e4e8ca5366e1f2d270d4785ea7

    • SHA256

      4fc50d17362e6ed4e53b082e4d01ad286eb2caca5113ae09e48eca48889b36fb

    • SHA512

      0b2dcbb290799c183ba07bdab0fb29f99c6621397a00ee7b76c9c12e45d4df0fca3c4d81dcea270496e185abeb9fbaf0ef7c62ebc284d356e0a39683d95f6d3c

    • SSDEEP

      24576:ZmsNORPPda72PV1sjlty/+gpd9O2hyyL7imXSQ:ZmnRPhD3bf9O2h9T

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks