Overview

overview

3

Static

static

3

PI.exe

windows7-x64

1

PI.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    0bcd3048df8ba86c7e1d840d5e919173_JaffaCakes118

  • Size

    766KB

  • MD5

    0bcd3048df8ba86c7e1d840d5e919173

  • SHA1

    ccbf1d7e4d5df789fb2db108471a0f6669b35b06

  • SHA256

    4a34afe978cff0dd10bb552900071c3ac69b3ac7b0296e26cb46cc6fda490250

  • SHA512

    556a6917145e17710d8f025b5a01cea1bd82ffbe6d983ea3a07de9a559e022997a0a0025c951990a3faf164393d42c2f4e54bdb580a36d820cc2698762d15174

  • SSDEEP

    6144:3m2awi+vvFYC1EpdMs8SxrUSBBTKgx3t6CETsjt+1OMYieMHQRJGCc/9BRHCgTCe:3o+3FYC1EpC4JBbx3oTswhhePGCwZp

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 0bcd3048df8ba86c7e1d840d5e919173_JaffaCakes118
    .msg

    • http://ebohon.ga

    • http://midland.com.hk

    • http://www.midland.com.hk/email-disclaimer.html

    • https://www.virustotal.com/#/file/322a80f92cda7eceb26126182df018a015dc9c689d9ab9c8491b226ebac7cb88/detection

    • https://www.virustotal.com/#/file/322a80f92cda7eceb26126182df018a015dc9c689d9ab9c8491b226ebac7cb88/detection{

  • HSBC_Payment Advice.doc.iso
    .iso
  • PI.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections