General

  • Target

    novapdfs.exe

  • Size

    56KB

  • Sample

    230921-rkkmfaae37

  • MD5

    87fff70deb3f738a1f3508510a5090af

  • SHA1

    ef6f443b618726153dcd5151ce9c96ab87c0c3f3

  • SHA256

    71f777d0e779a7bf0da20ebdf3313557bb361f03e1cdddfeb9551939e74d9d90

  • SHA512

    d357103a963fefdf5c11c5a23c6c6fcaffb574f449c579212bb148b8ab2b84303eab1253bd532acc338e6026f08c74251895a7bd036ca667dffac234f1dc43de

  • SSDEEP

    1536:qAkAFnFilfwQO5Mqm9VdFd19F9Vd0623gRixUqoyihM:qhCFgfwQqhvgRI/7

Score
7/10

Malware Config

Targets

    • Target

      novapdfs.exe

    • Size

      56KB

    • MD5

      87fff70deb3f738a1f3508510a5090af

    • SHA1

      ef6f443b618726153dcd5151ce9c96ab87c0c3f3

    • SHA256

      71f777d0e779a7bf0da20ebdf3313557bb361f03e1cdddfeb9551939e74d9d90

    • SHA512

      d357103a963fefdf5c11c5a23c6c6fcaffb574f449c579212bb148b8ab2b84303eab1253bd532acc338e6026f08c74251895a7bd036ca667dffac234f1dc43de

    • SSDEEP

      1536:qAkAFnFilfwQO5Mqm9VdFd19F9Vd0623gRixUqoyihM:qhCFgfwQqhvgRI/7

    Score
    7/10
    • Obfuscated with Agile.Net obfuscator

      Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.

MITRE ATT&CK Matrix

Tasks