Overview

overview

7

Static

static

3

Liquidacio...os.exe

windows7-x64

7

Liquidacio...os.exe

windows10-2004-x64

7

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...ec.dll

windows7-x64

3

$PLUGINSDI...ec.dll

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Liquidacion por Factorizacion de Creditos.tar

  • Size

    483KB

  • MD5

    b6879310ced29e32f22382b06c2563cf

  • SHA1

    290e3c09e2d92f57fd21933ce5f5a3309eb465ea

  • SHA256

    66add95dc1decf6e28e5fb70f8c218ff7a4ec8976faee20c4a615a061f562409

  • SHA512

    ca8ee5e4d8b7a18fd8c8e5f8c08d56e8479aaa602f84887c0eb8f48048430b002375b77659baf7838f4cd974dd564f91839aefded9188caae1a25356901549f9

  • SSDEEP

    12288:DWo+uBAWo5q85T/KBtzNs2y9QcVF6PKWaYSp2wD:Co+uzo1CD9UTWo2w

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 3 IoCs
    installer

Files

  • Liquidacion por Factorizacion de Creditos.tar
    .tar
  • Liquidacion por Factorizacion de Creditos.exe
    .exe windows:4 windows x86 arch:x86

    e160ef8e55bb9d162da4e266afd9eef3


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    8c8a576201f68de1a3f26fc723b9f30f


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsExec.dll
    .dll windows:4 windows x86 arch:x86

    6b7d154c806f1e47db325229c300c6df


    Headers

    Imports

    Exports

    Sections

  • $WINDIR/sovesofaers/Ammonation.fil
  • $WINDIR/sovesofaers/Kiboshing.Tam106
  • $WINDIR/sovesofaers/Slitted24.The
  • $WINDIR/sovesofaers/aquilid.txt
  • $WINDIR/sovesofaers/eyewitness.dan
  • Ariosi/phenotypical.bra
  • Ariosi/placophoran.pen