General

  • Target

    RFQ#RE_Q1_2100006461_SUPPLY_ABB_MATTERIALS_Waagner_Biro_Bridge_pdf.exe

  • Size

    431KB

  • MD5

    2d445bd0fd5ca61eb05f2a293e7e9ecb

  • SHA1

    4728f6650d9658ad6c9db2a1c01c88b0bd9be712

  • SHA256

    c5bbe31a17d4365500acaf7bd2fbfc10f8a0867d650e12b24e22efa239cfdb3d

  • SHA512

    a8939d865005272c265e8c235153bffad905d6cb28aabd9599e707d2e09f55e3fc876d85a68da75947df4af5dde7b2d81916bf5d53e3319194fe2eb16414fd30

  • SSDEEP

    6144:znPdudwDMyZL5OCSAPcWOkhdeocqhf06ITkmSiwvcU7RJKbZJ2AI/6QRkmBWjjr5:znPdjQOFlfoi0TTv9U77KbZJ2AmrYVj

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • RFQ#RE_Q1_2100006461_SUPPLY_ABB_MATTERIALS_Waagner_Biro_Bridge_pdf.exe
    .exe windows:4 windows x86 arch:x86

    9dda1a1d1f8a1d13ae0297b47046b26e


    Headers

    Imports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    509a34b3a68a773e0afb4259e68f9f82


    Headers

    Imports

    Exports

    Sections

  • Kricketboldes/Apogees139/fopping/dragningens.txt
  • Restage/Frknerne/Brugerlicensaftalerne/Handlefrihedernes/Grdefrdig.Spi
  • Restage/Frknerne/Brugerlicensaftalerne/Handlefrihedernes/Pogromizes.ero
  • Restage/Frknerne/Brugerlicensaftalerne/Handlefrihedernes/Zombie.udk
  • Restage/Frknerne/Brugerlicensaftalerne/Handlefrihedernes/domsmagten.ons
  • lazarist.tri
  • smells.mos