General

  • Target

    RFQ#RE_Q1_2100006461_SUPPLY_ABB_MATTERIALS_Waagner_Biro_Bridge_pdf.gz.zip

  • Size

    368KB

  • MD5

    4eef5f049b1460a12d46ea8edb90db5d

  • SHA1

    727aac60be4870276053d5cf5488b17a5454da48

  • SHA256

    16357a4c23a0ece7480e364245e9c491019c96afe5904eb65f219f8a6b91c611

  • SHA512

    bbe2a4ede0f0715644e7f8b2b75aa2fe74602ba97567116bf7a7a1e3c26e3f8b3d34785ffd594cad5569b76244ed98b406f22bdcbddb958fd4d2a91476464d6d

  • SSDEEP

    6144:1lHGg9qK2+cWOkLdeocehf06IrkmSiwvcG7RJ+bZJ2WIx6QRkmBAjjr+ji:3p9y+FlBo+0Trv9G77+bZJ2WWr6yO

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • RFQ#RE_Q1_2100006461_SUPPLY_ABB_MATTERIALS_Waagner_Biro_Bridge_pdf.gz.zip
    .zip
  • RFQ#RE_Q1_2100006461_SUPPLY_ABB_MATTERIALS_Waagner_Biro_Bridge_pdf.exe
    .exe windows:4 windows x86 arch:x86

    9dda1a1d1f8a1d13ae0297b47046b26e


    Headers

    Imports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    509a34b3a68a773e0afb4259e68f9f82


    Headers

    Imports

    Exports

    Sections

  • Kricketboldes/Apogees139/fopping/dragningens.txt
  • Restage/Frknerne/Brugerlicensaftalerne/Handlefrihedernes/Grdefrdig.Spi
  • Restage/Frknerne/Brugerlicensaftalerne/Handlefrihedernes/Pogromizes.ero
  • Restage/Frknerne/Brugerlicensaftalerne/Handlefrihedernes/Zombie.udk
  • Restage/Frknerne/Brugerlicensaftalerne/Handlefrihedernes/domsmagten.ons
  • lazarist.tri
  • smells.mos