Static task
static1
Behavioral task
behavioral1
Sample
INV01562.pdf.exe
Resource
win7-20230831-en
Behavioral task
behavioral2
Sample
INV01562.pdf.exe
Resource
win10v2004-20230915-en
General
-
Target
INV01562.pdf.7z
-
Size
567KB
-
MD5
1bc2d2afdc016c3f908c961706087094
-
SHA1
dcae488dca344fdf6b76f819476b5421c06f3b31
-
SHA256
105b794d85b5a1da2dc39cab29f7cddccaaedcb000943c04a5cef0f8c6f94e62
-
SHA512
507836b9b7ee7fbe8fb381b4a2c6e45e0606942a8441c5c86fd25c0754c76bb9d2aa7c71a83c4564855b8af5dcec77020d90467bdfaf43c104f32270615fc0a0
-
SSDEEP
12288:x/hh10Xh52q8qTt5MpfMSykLd5h1zyHogdEk8PbNpETATc7e6E:Th10XCNpfMJkR5h1zyIg6k8PvLTc7e6E
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack001/INV01562.pdf.exe
Files
-
INV01562.pdf.7z.7z
-
INV01562.pdf.exe.exe windows:4 windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 593KB - Virtual size: 593KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 403KB - Virtual size: 402KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ