Static task
static1
Behavioral task
behavioral1
Sample
Invio ORDINE FORNITORE nr. 021337 del 11112024 da parte di Agritek.exe
Resource
win7-20240729-en
General
-
Target
b2e500c26464ab7ab9990ae6dea5647e119f2380b9304b7e9e14b34945589475
-
Size
592KB
-
MD5
f28db9c54a32d6aeebfa5fb928bbf0c3
-
SHA1
f0876b8a5e969dc11a9b97f64777e18f33dd6c99
-
SHA256
b2e500c26464ab7ab9990ae6dea5647e119f2380b9304b7e9e14b34945589475
-
SHA512
96ac304f2924ea4f932e8dd9ad795b5a3a63451bf9aeb320ec075141ec6a4b798a898d846e6d6b4fb7a88ca3fbb2e7e4db2ce136441efe1442b7e3c00320aad4
-
SSDEEP
12288:68mJObG+veIeian9MXQ4EfvIrUFcTVXf13disrMdMs1WjF+SZlP4HoF0mRM:8/bIeb9IQtoE4XftIdMJtYHorM
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource unpack001/Invio ORDINE FORNITORE nr. 021337 del 11112024 da parte di Agritek.exe
Files
-
b2e500c26464ab7ab9990ae6dea5647e119f2380b9304b7e9e14b34945589475.rar
-
Invio ORDINE FORNITORE nr. 021337 del 11112024 da parte di Agritek.exe.exe windows:4 windows x64 arch:x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Sections
.text Size: 18KB - Virtual size: 17KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ