General

  • Target

    24977198b47394768b4ce62a2f88adf86efc842d29402130a826869be752ccf8.zip

  • Size

    1.1MB

  • MD5

    51d4e15caae44bf887693d0fe245e4e5

  • SHA1

    3b3c494fdbdd43f964e9fa0338c1b62d904e0e91

  • SHA256

    44f18e30882c460ba5840cf4ed31301da5ae843de7198fa8233e2cc56d0fc9f4

  • SHA512

    845ad830040bf0d5a27536077d903f496823041dc64d9b667fa96c7058702e3b5c11e71cc18cbeca86abccf6c7c88b5bc248d7739cc65c7848e9a63791ed31d2

  • SSDEEP

    24576:0bPSz9WH4SSfyo1iVfMl8Hz5X47dGABIgX47FD:uPO9RS0XWA8Ta7pSDd

Score
1/10

Malware Config

Signatures

  • NSIS installer 2 IoCs

Files

  • 24977198b47394768b4ce62a2f88adf86efc842d29402130a826869be752ccf8.zip
    .zip

    Password: infected

  • 24977198b47394768b4ce62a2f88adf86efc842d29402130a826869be752ccf8.exe
    .exe windows:4 windows x86 arch:x86

    Password: infected

    4f67aeda01a0484282e8c59006b0b352


    Code Sign

    Headers

    Imports

    Sections

  • Gengas/Festfyrvrkerierne/Favrs/Haida.Dyr
  • Lepidodendrids/Kamgarners/baroniet/Snowbank.pro
  • Lepidodendrids/Kamgarners/baroniet/unbegotten.res
  • Lepidodendrids/Kamgarners/baroniet/urus.tip
  • parlatory/Udskriftsbetingelsens/Giringerne.Cro
    .ps1
  • parlatory/Udskriftsbetingelsens/Programudgaver.txt