General

  • Target

    10072024_1507_10072024_COMANDA URGENTA.zip

  • Size

    476KB

  • MD5

    faafd76f3b07f04accf3497d539399d8

  • SHA1

    c2e35d9f62067e511ee357e8fb510cbbeb4b8612

  • SHA256

    7932a6860c6d63ce966ff426eec13a07a5ebc4cdf8bf13fc935bee9e4eef7698

  • SHA512

    9e426da9f43a0e90fa224244d3ea0f7697ed54064c591c833bb630b720d3a270760ef3b57c476520d30937045b36e462af69d87b764c38c9374ee5137bc1870c

  • SSDEEP

    12288:+bP9zDFRIPG9TbbwK8DQiVi8lncWC7FNnW5xX:unLdbbwK8rTlF4FNnWrX

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs

Files

  • 10072024_1507_10072024_COMANDA URGENTA.zip
    .zip

    Password: infected

  • COMANDA URGENTA.exe
    .exe windows:5 windows x86 arch:x86

    Password: infected

    f677acae05efabe7411a40902b2d88fb


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:6 windows x86 arch:x86

    Password: infected

    595a3fd71239f605bb02d7a5e48fd4df


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsExec.dll
    .dll windows:6 windows x86 arch:x86

    Password: infected

    0d6ae1f1ecbace583969d8eb8b21d1b8


    Headers

    Imports

    Exports

    Sections

  • Doundake/disusance.nar
  • Fiskerimssige.Ebr
  • Unwig.cal
  • computerspillets.txt