Overview

overview

10

Static

static

1

RFQ#17062024.exe

windows7-x64

10

RFQ#17062024.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    RFQ#17062024.lzh

  • Size

    700KB

  • MD5

    48d01bc4d1da4a00f1f2ee6a6f8a74ea

  • SHA1

    f3aede07c95ba99e2339f62b6eafa62316e82799

  • SHA256

    5daa69b38bfc2e5a16ef84eb6e417ddc045e26b888ae2e20e34ad13a78f58265

  • SHA512

    30e6f46a05050bb472fcafe480df3ab938b5db6047019108ccfbcafe070a5d839c64f88027f6e263f83adf452557f6c4a23ee1cf2564bd9673247e212f76f63c

  • SSDEEP

    12288:to6mgKeuCmGKP6yC9r9QsPlLCA/NYki56Jz8DW:tT3uDGKPOrysNRNYki0WC

Score
1/10

Malware Config

Signatures

  • NSIS installer 2 IoCs
    installer

Files

  • RFQ#17062024.lzh
    .lzh
  • RFQ#17062024.exe
    .exe windows:4 windows x86 arch:x86

    7c2c71dfce9a27650634dc8b1ca03bf0


    Code Sign

    Headers

    Imports

    Sections

  • $PROGRAMFILES/Recide186/Affring.par
  • $PROGRAMFILES/Recide186/Dual.blo
  • $PROGRAMFILES/Recide186/Flerbrugerinstallation135.gre
  • $PROGRAMFILES/Recide186/Polack.reb
  • $PROGRAMFILES/Recide186/Present.Pol
  • $PROGRAMFILES/Recide186/spndte.hep
  • larvalia/stjfiltreringsfordelene.txt