General

  • Target

    Employee Performance Report_pdf.exe

  • Size

    905KB

  • MD5

    4d936712b148d8e083aa300c2cb722da

  • SHA1

    4b6f6d71140b8df5cdb952ef24ca8caac8b58b9b

  • SHA256

    9afdb7400c9c3d7dfe2fa696ac8d95e2049f1a3367cc3345848ce91f40928bb1

  • SHA512

    17cf1f6d30b7d86e3dda497d9f75a954b63d369a2bd6fdbd7d5efe2a94b43184186e312fc96e748f96ea50caab65efe5765f9e16b4de57942f4af82adab2a6e2

  • SSDEEP

    24576:xYi54ltxFsaopF0YL1uPkQWNRIyE2mPcd:OJDFsaopFt1OkTD

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • Employee Performance Report_pdf.exe
    .exe windows:4 windows x86 arch:x86

    61259b55b8912888e90f516ca08dc514


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    fc0224e99e736751432961db63a41b76


    Headers

    Imports

    Exports

    Sections

  • Borides.gyp
  • Fedtcellens.jpg
  • Nationalindkomst.jpg
  • Presartorial46.uns
  • Skaalvgtene233.ini
  • Skyggelgningens.Reu
  • Synge.pha
  • Viraginian60.ini
  • beherskelsens.txt
  • cursedest.jpg
  • jomfruklostres.apa
  • laboratorieplanlgnings.jpg
  • polycrotic.ini
  • transceiving.txt
  • trenchcoatens.txt
  • velbegavet.enr