Static task
static1
Behavioral task
behavioral1
Sample
New Order RFQ- 19A20060.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
New Order RFQ- 19A20060.exe
Resource
win10v2004-20240802-en
General
-
Target
New Order RFQ- 19A20060.exe
-
Size
3.3MB
-
MD5
37bbc0a6a399418331028aab64f4934b
-
SHA1
ab202974d765cd711cdb1174e06703e3e7f8f6fb
-
SHA256
ed70bf326cea089f65ec4d96d7874d8cb65f5ae5bb12bb66ff0e9f6b4bde78ee
-
SHA512
b9f170fe33ec79f6a4c9f0b01a0536a67cf4037957ae26a0523e461091f1cb7341b8f89ba8da46e189c1084503b854f8804dc230e844b6b5c50e4b132c740882
-
SSDEEP
24576:HQ2UiVzd4oKzRpnOQGOvP6Lryocw1N/qMJ:H+iVJ4oKnCr/d
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource New Order RFQ- 19A20060.exe
Files
-
New Order RFQ- 19A20060.exe.exe windows:4 windows x64 arch:x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Sections
.text Size: 16KB - Virtual size: 15KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ