General

  • Target

    Documenti di spedizione 00039488580006996960.bat.exe

  • Size

    752KB

  • MD5

    74b63fc7533ba2dfd75253a2ac5044f9

  • SHA1

    20c6f4f4db0e850f1506e7d89be267f2fa1b21e2

  • SHA256

    fbcceeb087e972ef29b0e3561a022aa4e6897cd78de77049e130e47bafcde554

  • SHA512

    ff82f9a7138fce1aca1c59fd0fc7b050d59a5c507af33beb599bec543b7b3c8186a7e7ece3c8aa47ef5383d115b06231e80bffc398598764fd642a7228e23bb1

  • SSDEEP

    12288:nXJaAf3gv3zDtlZcqY18aAV0uyXVU62+eqvIwLT6Q11m14VELQrr+ZuHu/bf95Ro:5aO3gvjs8JV0uyXE1w/K6ELDuO/J5e

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • Documenti di spedizione 00039488580006996960.bat.exe
    .exe windows:4 windows x86 arch:x86

    17b7d61bda0f7478e36d9ce3d4170680


    Headers

    Imports

    Sections

  • $PLUGINSDIR/nsExec.dll
    .dll windows:4 windows x86 arch:x86

    a89a235c853214d5f945ce4c2f607130


    Headers

    Imports

    Exports

    Sections

  • Aaringens134/margueritten.rou
  • Aaringens134/noctambulist.eks
  • Aaringens134/sanction.amy
  • Airedaleterrier.Unb168
  • Ytringsfriheds.Boe
  • infirmarer.txt