General

  • Target

    zamowienie_22.7z

  • Size

    733KB

  • MD5

    841ec7df640f7427c92a0c025551d84a

  • SHA1

    2253dac0174993f2f86afd460e856753e55d9c43

  • SHA256

    9f82994c5a9245dfd9233933c272efc2ae69c6b731bb090b10bdc3fc1d0df46a

  • SHA512

    fca6582f02f3faa72b956ee48e564aecc8a902a376f9a3178720df685d110759ad0438451a362c5d7812d9490e03f37870082d3374783d9f652f14a87aa9593d

  • SSDEEP

    12288:ckjjJNCW6CghT7Y89Gbj4nUoZodirMJwAkPnsbVy1LrJ6YMaypoQQO4XUW7c:ckZNC117L9G/M3XMGAkPnsJy1LrJ6ZaK

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs

Files

  • zamowienie_22.7z
    .7z
  • zamowienie_22.exe
    .exe windows:4 windows x86 arch:x86

    0293eec0b5432ad092f24065016203b2


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    240ca92ecc1c291801c451c447e16c12


    Headers

    Imports

    Exports

    Sections

  • Alaruming.non
  • Fortsttelseskurser/sodomitternes.dif
  • Fortsttelseskurser/subhyaloid.shi
  • Fortsttelseskurser/traveri.txt
  • Fortyskes.Lit
  • Recorks108.Adr
  • Tilfredshederne.bjr
  • frlighed.app
  • garran.bes
  • rensdyrmossers.pro