AddImage
AddText
Clear
Destroy
Redraw
SetBg
SetReturn
Sound
General
-
Target
21052024_1435_21052024_QJAS2024P01-080 Q20240521.IMG
-
Size
1.2MB
-
MD5
ee46f4cb0faacef486ba752add49799e
-
SHA1
2507c14f79b35cfc5d2187a797be8745752dda81
-
SHA256
0b4a3dd50fed1972cb41fa18b79d8a51ae8b15ae8d31e4facd926a86bfa6926f
-
SHA512
3f71cceb1be3890800859c99163ca6456cb8c40f5289b2d59c251022922f05d3f495a06f6d2fa0919ddc693f1cf9a1ea79917ce47199944b5666f661bfb622bd
-
SSDEEP
6144:0DGIRuoQi1NgwFSaUVf9GBVoqzai9ghRTMiZ4rbcev:rItQi1awNUaBVJza2QRQiZW
Score
3/10
Malware Config
Signatures
-
Unsigned PE 4 IoCs
Checks for missing Authenticode signature.
-
NSIS installer 3 IoCs
Files
-
21052024_1435_21052024_QJAS2024P01-080 Q20240521.IMG
Password: infected
-
out.iso
Password: infected
-
QJAS2024P01-080 Q20240521.bat
Password: infected
3abe302b6d9a1256e6a915429af4ffd2
Headers
Imports
Sections
-
$PLUGINSDIR/BgImage.dll
Password: infected
bdcecc8b26871abb93996c6c18e09c94
Headers
Imports
Exports
Sections
-
$PLUGINSDIR/System.dll
Password: infected
8c8a576201f68de1a3f26fc723b9f30f
Headers
Imports
Exports
Sections
-
$PLUGINSDIR/nsDialogs.dll
Password: infected
ddbd50fe6279559edf7d1f1d89b42c2c
Headers
Imports
Exports
Sections
-
Allomorph/Fugeskeen/databehandlingsforeningers.sky
-
Allomorph/Fugeskeen/electrohomeopathies.txt
-
Allomorph/Fugeskeen/mildewy.jam
-
Allomorph/Fugeskeen/natans.sma
-
Allomorph/Handrailing.cir
-
Allomorph/Lejningers.Non
-
Allomorph/Nonstationaries.pai
-
Allomorph/Warmakers.fal
-
Allomorph/aniara.uns
-
Allomorph/bekendelsesskriften.pro
-
Luhinga/utilidors.lok
-
Luhinga/xenonet.mul
-
Underdead/ovest.tho
-
Underdead/paksks.pre
-
Underdead/stttepartiets.mis