General

  • Target

    19092024_0956_18092024_RFQ#09182024.gz

  • Size

    986KB

  • MD5

    3c1c349061dcd9b2cc49868db20a9cae

  • SHA1

    a36fce623100a4e8e6dd8ee8f1aa5769eeba5e8e

  • SHA256

    7f38a2c79216d64cd152f07e5601de568306e070b79f54829f41f9be5a85238a

  • SHA512

    7d325b0b4a49321b9c12a2a1c27846f3279d652ff2fae63b744f672db3beda89bc2b818454494b194f369b1f94c69da399ea749d5e27ccb2eda1239234ee2f56

  • SSDEEP

    12288:NsNx+QKbK8kIyYCedTnjj5lxLYeuyMOXXIoK8guo2Qf2btwJeOvvYr7WHYukOl1Y:NU+Q7KyXetpHLY9yZguoDgjW4SHfZ6X

Score
5/10

Malware Config

Signatures

  • AutoIT Executable 1 IoCs

    AutoIT scripts compiled to PE executables.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 19092024_0956_18092024_RFQ#09182024.gz
    .rar

    Password: infected

  • RFQ#09182024.exe
    .exe windows:5 windows x86 arch:x86

    Password: infected

    04b4eec1b14791bf23f31173f27a5df0


    Headers

    Imports

    Sections