General

  • Target

    mkpub_PAYMENT APPROVED.PDF.Gz

  • Size

    600KB

  • MD5

    72dc7d73bf36f8cb8a83d7f45986652f

  • SHA1

    0e3d7f8b7951371bdd9b5e18c556ce6b700f7a86

  • SHA256

    512b8e5d31688950a0370b728506bcc9f76836d3828661cc5e776b2ecda6e04c

  • SHA512

    a857d1e1da0dcebaf808f96c24f00f930e3d1481030d38b828d83b0551e7ccee4aff25cb9ae916d403a5b12bd0af270a7715546ae336ab34387657ccefa5084c

  • SSDEEP

    12288:IHIjwteW3KDWpu5IuP2ZF2zEpcD2kP5W1rRZ4sLGypA8Ox1o2YmdTvoyml/2:gIjwMCpu5X2/mEpXy5irRnLGyphG1o2t

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • mkpub_PAYMENT APPROVED.PDF.Gz
    .zip

    Password: infected

  • PAYMENT APPROVED.exe
    .exe windows:4 windows x86

    Password: infected

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections