General

  • Target

    OfficeFR.zip

  • Size

    5.6MB

  • MD5

    833ddc1ead1a416da66360ae4f81a92f

  • SHA1

    418ad82a6a1777f327ae07393fc8e0a573ee8340

  • SHA256

    2833f20225745fba308eeba54508a18930093356ac74d5fc67a42ba263351484

  • SHA512

    e1c8409607a52e4f8a7d50f1ef6b2491d8a1ac7db635079a2d96c75269fb9d52aea60825c41908e6f64cb7a7bb3929159564c8e7de5827d3d518246e065eb411

  • SSDEEP

    98304:H1rTUJe4YzZVa81bXvXyeNbnaASj5KIyrpbkACjUALuveae01rjyxWmTQmBn:H18JSVTvkXunCIASven01PyxWmzn

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • OfficeFR.zip
    .zip

    Password: infected

  • Setup.X64.fr-FR_O365HomePremRetail_001a94d5-9257-4d7b-80a6-dce1a0d145d0_TX_DB_.exe
    .exe windows:5 windows x64 arch:x64

    Password: infected

    1b52c159a42a9b0be6a17194b513c622


    Headers

    Imports

    Sections

  • Setup.X86.fr-FR_O365HomePremRetail_001a94d5-9257-4d7b-80a6-dce1a0d145d0_TX_DB_.exe
    .exe windows:5 windows x86 arch:x86

    Password: infected

    31e873f5b724ce111180fd4a36c214be


    Headers

    Imports

    Sections