General

  • Target

    12092024_0814_11092024_Payment invoices 023578,103543,82471.xxe

  • Size

    553KB

  • MD5

    31ee5503db45506a0f170f0fbf7d2ff7

  • SHA1

    00c2312e55de6cf763037d7806b4cc6e1421b298

  • SHA256

    e4a1b42efdf45cc9911f4f198aeb981e14043ea23c500cf1e3fa0bb3160948fd

  • SHA512

    3b402a9a157c252bac482e45d19f620068813367b9b9d616f4fb4fa85f472fcd05d64e54f681472985db0defa25f3c1ab13fd3998dfc948f04e4b21d58551051

  • SSDEEP

    12288:f7pys32frdHL+BcKpETyAsZJSgjmaLTndJx74ajgbs:CR+BSTaJSgjmkHxMajgs

Score
5/10

Malware Config

Signatures

  • AutoIT Executable 1 IoCs

    AutoIT scripts compiled to PE executables.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 12092024_0814_11092024_Payment invoices 023578,103543,82471.xxe
    .rar

    Password: infected

  • Payment invoices 023578,103543,82471.bat
    .exe windows:5 windows x86 arch:x86

    Password: infected

    21634e8b08d82f0c85fdef261dcc3085


    Headers

    Imports

    Sections