Static task
static1
Behavioral task
behavioral1
Sample
Megrendelés_(P.O_5029063)_FANUC.exe
Resource
win10-20230220-en
Behavioral task
behavioral2
Sample
Megrendelés_(P.O_5029063)_FANUC.exe
Resource
win7-20230220-en
Behavioral task
behavioral3
Sample
Megrendelés_(P.O_5029063)_FANUC.exe
Resource
win10v2004-20230220-en
General
-
Target
7c823274ec6a711a73c4c7df54d1d4cd.zip
-
Size
19KB
-
MD5
c4bbaa48f29960ee2722011afd3f03da
-
SHA1
6a5e8768ee4695232e15270c78f3f5a2d6899f9b
-
SHA256
e75d2043a1eb7b4b789fe658bfcd288acde0447d7e44640fb3e14c9da7a6e0fb
-
SHA512
f3ead62d34c03859029fba78fb1027cdafcd5b1594fb9cf7809bad8c1db5b8c9fc055629010dade5bf2528d056cfe369262a41f7d230012731c918352a67b9f7
-
SSDEEP
384:w+4BvaMRofJWUgY0Hr16FyXz0WVnjpEiCa9/:zep2zgY4oF4AWLzd/
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource unpack004/Megrendelés_(P.O_5029063)_FANUC.exe
Files
-
7c823274ec6a711a73c4c7df54d1d4cd.zip.zip
Password: infected
-
7c823274ec6a711a73c4c7df54d1d4cd.zip
Password: infected
-
Megrendels_(P.O_5029063)_FANUC.zip.zip
Password: infected
-
Megrendels_(P.O_5029063)_FANUC.iso.iso
Password: infected
-
Megrendelés_(P.O_5029063)_FANUC.exe.exe windows x86
Password: infected
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 34KB - Virtual size: 33KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
.rsrc Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ