General

  • Target

    Request for Quotation (RFQ_196).zip.zip

  • Size

    3.3MB

  • MD5

    cd8809f7ff201be2ee7b30dcac045faf

  • SHA1

    b5733a6adb40c80e66c5e35822bb46701578c537

  • SHA256

    da2dc849934435bd0d69791702a3a7d1ff20774f917d5e39d765d12903bd9051

  • SHA512

    df058f8f8ee937d784f503b7788be7715f3642992f17350891b64b9802edc1290673716f00b6bc334dd178f56c38fd4f264632ca403f72b4769bffacd8ec6903

  • SSDEEP

    98304:bvGLKV81cKbIRPj4YinjnG3BVIQxrVLCJfkZ:bGA8eKbYb4bzG3jIgrVLuE

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • Request for Quotation (RFQ_196).zip.zip
    .zip

    Password: infected

  • Request for Quotation (RFQ_196).zip
    .zip

    Password: infected

  • Proforma Invoice and Bank swift-REG.PI-0086547654.exe
    .exe windows:4 windows x86 arch:x86

    68f013d7437aa653a8a98a05807afeb1


    Headers

    Imports

    Sections