Resubmissions

06-11-2024 08:50

241106-krjv6azjcn 7

06-11-2024 08:48

241106-kqtc7sxfll 7

General

  • Target

    tebo-ictview.4.0-patch.zip

  • Size

    531KB

  • MD5

    cad2506fdf50bc3cca25f582049984d0

  • SHA1

    e141d367b764623ffb37801a3c7a4a15a07988df

  • SHA256

    5217148419fc18f5b476d74431d7a437d0f4e2ca43017b8b69507d1e200b378b

  • SHA512

    34e3431a681d7b890e3e78d32f9716fc51857600d0d57e865a5c30fda780c38415fc884f2b9fc3921c3f4705d19ca192dddb76671dc1d952485d904aa250e29f

  • SSDEEP

    12288:uW+lzoSzhyYn+0gbmn9RY5fhvLddM93vQv0Os34:Dw5Fnxmmn4VxZ+3W014

Score
3/10

Malware Config

Signatures

  • One or more HTTP URLs in qr code identified

    Detects presence of HTTP links in QR codes.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • tebo-ictview.4.0-patch.zip
    .zip
  • 1. FILES SOURCE LINK.url
    .url
  • 1. README!!!-ПРОЧТИ!!!.txt
  • QRcod.png
    .png
    • https://t.me/DeviceDBadd_bot

  • tebo-ictview.4.0-patch.exe
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections