Overview

overview

10

Static

static

3

Invoices.exe

windows7-x64

10

Invoices.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    Invoices.exe

  • Size

    820KB

  • MD5

    153a88cac823cad7e400b699f8d2bc6a

  • SHA1

    7c9fb2d5e8559d75bf6d331e7458268b86ecf027

  • SHA256

    9b96cda22e709213aab3c9da235bf721cb0fd318d91f908aed544d1f8e8eb8d4

  • SHA512

    66630a3e659dcd5fbaec283181c56448b31b5061d23eebd2db0e2d94982615c339168eabcf6b7ee7ccd5faa0b31b785a719abf02e4eaad382e781d2b557b3156

  • SSDEEP

    12288:NX8AAopS5s7Prs1K9qjmF7UC5xkdWeCt62kUhYWF1nhmREPMQW/cDX0EqRBKdqx7:18NWe263UGWFTmRYjW/4URBKdqekVJ

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • Invoices.exe
    .exe windows:4 windows x86 arch:x86

    59a4a44a250c4cf4f2d9de2b3fe5d95f


    Headers

    Imports

    Sections

  • $PROGRAMFILES/odontoceti/Berloque34.urb
  • $PROGRAMFILES/odontoceti/Decylenic.Sto34
  • $PROGRAMFILES/odontoceti/Lenticulas.nyb
  • $PROGRAMFILES/odontoceti/Livsforsikringssummers.acc
  • $PROGRAMFILES/odontoceti/Ophavsrettigheds.txt
  • $PROGRAMFILES/odontoceti/Proxenus.Inh
  • $PROGRAMFILES/odontoceti/Serrifera.sto
  • $PROGRAMFILES/odontoceti/undre.pro