General

  • Target

    240418-ffnmracg7x_pw_infected.zip

  • Size

    3.3MB

  • MD5

    e1f1b5289faa1c6d9616fd9c190b97b7

  • SHA1

    9e188990285501642d1de8df8f5d3654d99cb23b

  • SHA256

    4f2a8705c85b06b8b4fc3550629d2c69d993ce7c4aebaa1d21298a8eb0b9ebde

  • SHA512

    a401a0128429f87ac5b33df6021877a61e7918de4c0536b63358fda0eda623348be1cd464e6a11da4fd56d452670f61138df0bb879784c282c02965aa40a89ca

  • SSDEEP

    49152:UmeB82U2+Ub98C/+PFRGC3+hYP7DPW2d9HS60FzGXaH0QegwxDr5bekP20PoSRZ8:BHRIQG++MCWHJ0hCaH0hOk9oSRLLxc

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 240418-ffnmracg7x_pw_infected.zip
    .zip

    Password: infected

  • Request for Quotation (RFQ_196).zip (1).zip
    .zip

    Password: infected

  • Request for Quotation (RFQ_196).zip
    .zip

    Password: infected

  • Proforma Invoice and Bank swift-REG.PI-0086547654.exe
    .exe windows:4 windows x86 arch:x86

    68f013d7437aa653a8a98a05807afeb1


    Headers

    Imports

    Sections