Overview

overview

10

Static

static

3

Proforma I...54.exe

windows7-x64

10

Proforma I...54.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Request for Quotation (RFQ_196)(wannacry).zip.zip

  • Size

    3.3MB

  • MD5

    1696e1a304f122d27730c76ebed90877

  • SHA1

    d1329438641c6d3fe01f2f797e4a64399480c278

  • SHA256

    f9461947a7e0d14aa7ba3363079dd40ba81791bfa90e3bbf93466431dcf46d0a

  • SHA512

    c084bb79cb84038e63b09ff91fbff2baa04f85d8b05dcee1182dfff773b157273fb300b1b6bbfddedeabccba7514368b5c177fd8fe5e9e9490d90c10732c512a

  • SSDEEP

    98304:F7STQ3MMvaKnBflZqTNl1Tcpmb9t4d/Da1A:FT3MMv/BdwTNrcYRydiA

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • Request for Quotation (RFQ_196)(wannacry).zip.zip
    .zip

    Password: infected

  • Request for Quotation (RFQ_196).zip
    .zip

    Password: infected

  • Proforma Invoice and Bank swift-REG.PI-0086547654.exe
    .exe windows:4 windows x86

    Password: infected

    68f013d7437aa653a8a98a05807afeb1


    Headers

    Imports

    Sections