General
-
Target
General Specification -INVACO PVT.exe
-
Size
1.4MB
-
Sample
240320-nqh41sgc5z
-
MD5
518ae6533961ef76d292799a319e65a4
-
SHA1
90280c10aab7dab154ffabc8bec07239399eb9c5
-
SHA256
566264588abd2dc73b673b68d2ebb13a305a42b8ca5c65d2ecb5f28dc5ff6d71
-
SHA512
b289507e44951b35feda81a798d2fcbee61d419ed285624f24206911fd19355d48cf57b4788c325dc45419ab91b9d778e13f945b0149a1556139ed1f6d43f622
-
SSDEEP
24576:BAHnh+eWsN3skA4RV1Hom2KXMmHad/w4SQ3vB9CX+5:Yh+ZkldoPK8Yad/wJIvPN
Static task
static1
Behavioral task
behavioral1
Sample
General Specification -INVACO PVT.exe
Resource
win7-20240221-en
Malware Config
Extracted
formbook
4.1
kh11
theluckypaddle.net
assurelinkenterprises.com
gazpachogroup.com
worxservicesllc.com
bestecankurban.com
cotebrief.com
899173.com
navist.io
metaverseharem.com
genpower-plus.com
drhandgrip.com
jessicachristina.com
eidura.com
cat2000andhope1izfanfiction.com
nywaiverlatam.com
cdlb9twt.shop
j2mjewerly.com
itsmisshodges.com
timeis.shop
santefe4g.com
ongame.cloud
guard-dd.online
rutgersorthopedics.com
rkbengg.com
dentalemergencybakersfield.com
jansirani.com
gadilglobal.com
unitygiftingco.store
enxk-32.com
northcuttmediacompany.com
hyyhldz.site
stripperscontest.com
lexcomtech.com
issndiploma.com
shopynuts.site
shpoifypos.app
gamer24.top
dibujosparapintar.net
healthinsuranceudeserve.com
pampadev.tech
whefgf.club
riversandcapital.com
foroupskirt.com
wocan92.top
onehourbookclub.com
brochuresenligne.site
suv-deals-85472.bond
coalswap.com
tresxop.xyz
juniortrevisol.com
it-jobs-87776.bond
black-loan3.shop
chicprems.xyz
pmheiouassessment.shop
186489.support
88mahadewa.vip
vn90129.me
cattaillake.com
jmknoh1r.shop
attitudedancefitness.com
eventcrrate.com
autonomoangola.com
jollshopp.com
thesimplestudio.io
gltip2le.shop
Targets
-
-
Target
General Specification -INVACO PVT.exe
-
Size
1.4MB
-
MD5
518ae6533961ef76d292799a319e65a4
-
SHA1
90280c10aab7dab154ffabc8bec07239399eb9c5
-
SHA256
566264588abd2dc73b673b68d2ebb13a305a42b8ca5c65d2ecb5f28dc5ff6d71
-
SHA512
b289507e44951b35feda81a798d2fcbee61d419ed285624f24206911fd19355d48cf57b4788c325dc45419ab91b9d778e13f945b0149a1556139ed1f6d43f622
-
SSDEEP
24576:BAHnh+eWsN3skA4RV1Hom2KXMmHad/w4SQ3vB9CX+5:Yh+ZkldoPK8Yad/wJIvPN
-
Formbook payload
-
Suspicious use of SetThreadContext
-