General

  • Target

    e7456c57dba442a7e63f2bd45ff5be6c8168f2fcfd15c5e405536fb3bb212dcb.zip

  • Size

    641KB

  • MD5

    588c072bdd958880fb9e52e9aea3e25d

  • SHA1

    d1dcfc6cab227c12913f2591b556f92026193ee0

  • SHA256

    d791b928e0bd0b85b417d956dd9339959a2ab50c41e694a507dc6e906c2e3c38

  • SHA512

    a94566905214d14b375cb60dece9e91e684ec287fadff6af23da657f0cc725c7ad5888d3267c506bd1629fe748c3968d32b808c2552a69453413c2dbce7bcf29

  • SSDEEP

    12288:1TEN1ZTmKwfWmsBdMgI87ciuC8SdHeOHhYzoh139IOrc7xiT:1TEfgFedy87ciOaZl9hex8

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • e7456c57dba442a7e63f2bd45ff5be6c8168f2fcfd15c5e405536fb3bb212dcb.zip
    .zip

    Password: infected

  • e7456c57dba442a7e63f2bd45ff5be6c8168f2fcfd15c5e405536fb3bb212dcb.exe
    .exe windows:4 windows x86 arch:x86

    Password: infected

    61259b55b8912888e90f516ca08dc514


    Headers

    Imports

    Sections

  • bzeakrjaft.hv
  • chdtr.tlz
  • kigtiqm.exe
    .exe windows:5 windows x86 arch:x86

    Password: infected

    6ae531f3439aee07e850dbb1ac7115a4


    Code Sign

    Headers

    Imports

    Sections

  • xmnxoix.au3
    .vbs