Overview

overview

10

Static

static

3

Proforma I...54.exe

windows7-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Request for Quotation (RFQ_196).zip.zip

  • Size

    3.3MB

  • MD5

    6298fbed0f867ba4dbeae5e024f5994b

  • SHA1

    74dd88e77b3ecbb383ae43b2d6e580b49bf8d04e

  • SHA256

    9d6f9c6af8ae93bc15a146a3d1d86f0e21df3a03f5a384a2bd10c7bfc1957d20

  • SHA512

    5fbb9bcf9d4fecf8b910fe536770a6fe6e3b01badb0d0fab5a5aea487ad7e3d6fe9c17737c8563b17c394d5ce009a91c02cbe4ecacc2d0bb33c2494414c1aff2

  • SSDEEP

    49152:i9AjHQQflOVlftXMJrjyRpjv1XqQ4Iv8HIWg/GRUyxrBrl8+ZPOgxb7MQ9QkbHfR:u0HQQ87ftcJE/b0HIWPUSBjb3j3U0WO

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • Request for Quotation (RFQ_196).zip.zip
    .zip

    Password: infected

  • Request for Quotation (RFQ_196).zip
    .zip

    Password: infected

  • Proforma Invoice and Bank swift-REG.PI-0086547654.exe
    .exe windows:4 windows x86 arch:x86

    68f013d7437aa653a8a98a05807afeb1


    Headers

    Imports

    Sections