General

  • Target

    11112024_1322_11112024_PO 2024-91228.cab

  • Size

    610KB

  • MD5

    fde7ee14d7294ff29175a48441c747d6

  • SHA1

    6d98af2b9e4186a06cf9021b8bf196d508d36a75

  • SHA256

    d1a8a111a6821bea6039ad5218134967c80defedd91a2098e303c7a1d649016d

  • SHA512

    ffd8b126d7a07f198866557f55274c1f51d1593661aba08d2735cc16ce8ff6832efd4a784cf67866d9c1a18007674f20ef1f1f54de7431784110779d01e05c99

  • SSDEEP

    12288:iCWJHcyBlNMw/T9NuBDuHDFdhM87Gf6qM+STLQdO9jiHHqgLtC:OJd3b9QluHDFdhQnM+SXyYjKKgLtC

Score
5/10

Malware Config

Signatures

  • AutoIT Executable 1 IoCs

    AutoIT scripts compiled to PE executables.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 11112024_1322_11112024_PO 2024-91228.cab
    .rar

    Password: infected

  • PO 2024-91228.exe
    .exe windows:5 windows x86 arch:x86

    Password: infected

    8198a30eb574670a7616e0d21ec712cc


    Headers

    Imports

    Sections