Static task
static1
Behavioral task
behavioral1
Sample
NEW ORDER FILE.bat
Resource
win7-20230831-en
Behavioral task
behavioral2
Sample
NEW ORDER FILE.bat
Resource
win10v2004-20230915-en
Behavioral task
behavioral3
Sample
NEW ORDER FILE1.exe
Resource
win7-20230831-en
Behavioral task
behavioral4
Sample
NEW ORDER FILE1.exe
Resource
win10v2004-20230915-en
General
-
Target
af729dfa2816b249e95058748c3cdd207e8bf12021fc4f38ddf4dd6e357087bd
-
Size
1.5MB
-
MD5
e83baca91da4e58c4aceb95260882698
-
SHA1
d89170c20d2aa8fc6c88aff7abe8cf0adafd6d3c
-
SHA256
af729dfa2816b249e95058748c3cdd207e8bf12021fc4f38ddf4dd6e357087bd
-
SHA512
03d39fa9397e35c2204e17e3db4ae73f7962ecd4d111755b131f5b48e7a22faa47a8e6822c867b799f37a788372c9fbf7feec429ee8a180a557b3dec017f9d0f
-
SSDEEP
24576:eDd/uIExxBBBep8bVGneVUOE+TlSpTqNuOC1MkJPv/6eEFupKW+bxHB:e5Qx7BBep8nWcnIRMkdiDgpKW+bxB
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack002/NEW ORDER FILE1.exe
Files
-
af729dfa2816b249e95058748c3cdd207e8bf12021fc4f38ddf4dd6e357087bd.zip
-
NEW ORDER FILE.bat.bat .vbs
-
NEW ORDER FILE1.img.iso
-
NEW ORDER FILE1.exe.exe windows:4 windows x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
Sections
.text Size: 368KB - Virtual size: 368KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ