General

  • Target

    r1522024.exe

  • Size

    839KB

  • MD5

    35562de1445f84deee725deefe31b410

  • SHA1

    0e8168206e896875cccad315a2890820cae1cf33

  • SHA256

    7e08d267c3771ac900b9ecfe7b293aa7337a276a5929997180709b74114cdacb

  • SHA512

    a4b87335b32d87261eb93c9e5e1187adc752897659d6006e7ccad739ca20b2e80f111b4fd653580945e0664dc9fa3383dee7c8477093e2445b9a2a3f4ffc3fa1

  • SSDEEP

    24576:tMwT8bZSKZ+lKmxUgxDEuZ9WI+spi9iCnqVW:tMwHKi/x4uZ8dr9qI

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • r1522024.exe
    .exe windows:4 windows x86 arch:x86

    6e7f9a29f2c85394521a08b9f31f6275


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    fc0224e99e736751432961db63a41b76


    Headers

    Imports

    Exports

    Sections

  • Ensand/smrhul/Brdskorpens/Remailed.Kur
  • Ensand/smrhul/Brdskorpens/bldgrelsers.txt
  • Ensand/smrhul/Brdskorpens/fidibus.mic
  • Ensand/smrhul/Brdskorpens/kartotekskortet.imp
  • Ensand/smrhul/Brdskorpens/sprtningernes.def