Static task
static1
Behavioral task
behavioral1
Sample
QUOTATION_MAYQTRA031244PDF.scr
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
QUOTATION_MAYQTRA031244PDF.scr
Resource
win10v2004-20240508-en
General
-
Target
a99e84882bdf802efbd22c3e97c593c2dc2ce12cdd8f50ce0aca8f8542cdfd81
-
Size
44KB
-
MD5
21360d4926be3454cd1c2983fe7d0efe
-
SHA1
9ac1e0aeda91aca671618178a347f0df0257c25b
-
SHA256
a99e84882bdf802efbd22c3e97c593c2dc2ce12cdd8f50ce0aca8f8542cdfd81
-
SHA512
3ee3ff7a7650a46b37b683b96901ffa64c6f47ec9ac274697c61874b9fcc3a103462b25726ee6a42352a37754f1eb13baa5ea3de3a5cdbcb1df2f3509f790bed
-
SSDEEP
768:mRxsjp3AJpjBddbKYrefVzLQbATvzjYjxA6CYc/2MICmZTpGhS1/NNRguynMD2e:EjBddbKYrGz1vY1VbcZfsF8S1iDMD2e
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack002/QUOTATION_MAYQTRA031244PDF.scr
Files
-
a99e84882bdf802efbd22c3e97c593c2dc2ce12cdd8f50ce0aca8f8542cdfd81.eml
-
BANK DETAILS - PROFORMA INVOICE.z.lzh
-
QUOTATION_MAYQTRA031244PDF.scr.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 327KB - Virtual size: 326KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
email-html-1.txt.html