General

  • Target

    22052024_1232_22052024_doc023571961500.img

  • Size

    1.2MB

  • MD5

    5106302075eb2553360c72dec5793e20

  • SHA1

    1d3e0b35ce69e3c3123f494a2febe3edc738ad21

  • SHA256

    7ac91c1b8806a9ebc40b12497bd928973f009280a13b2515f9e293657e62b118

  • SHA512

    2d3ff5b0b2f4f3cbe503a425cc3baaa2f5cb5b79bfad721865aaba67d5e120745f3e39e27f0b8047647f278c5cd68ee716268954fb2eb0b14101e227e4ae4153

  • SSDEEP

    12288:nuoS1Rnqm/L+toFP3ke8cfDynok2l19jjk9CTe13:uT1Rqm/kol3Kn619k

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 3 IoCs

Files

  • 22052024_1232_22052024_doc023571961500.img
    .iso

    Password: infected

  • out.iso
    .iso

    Password: infected

  • doc023571961500.bat
    .exe windows:4 windows x86 arch:x86

    Password: infected

    e160ef8e55bb9d162da4e266afd9eef3


    Headers

    Imports

    Sections

  • Besonnet198.Srb
  • Corker47/ballepresningens.let
  • Corker47/lifefulness.cli
  • Corker47/seler.mad
  • Dillydally/Repraesentant.txt
  • Gaskraftvrkerne/Shutting.aca
  • Rykkerbrev.Rin