| Name | 9be6d017f0007994_alpha.pif |
|---|---|
| Filepath | C:\Users\Public\alpha.pif |
| Size | 296.0KB |
| Type | data |
| MD5 | 80c9f3c4c44cd6012caacc6e829ab935 |
| SHA1 | 6b97b8abb690da492f86fb990f92bdcd18a8709d |
| SHA256 | 9be6d017f0007994ae8adb0ffab96865e2a60d241206687f9c18038dc332f87c |
| CRC32 | 679A0041 |
| ssdeep | 3:: |
| Yara | None matched |
| VirusTotal | Search for analysis |
| Name | 7bcdc2e607abc65e_kzgqdtrg.pif |
|---|---|
| Filepath | C:\Users\Public\Libraries\kzgqdtrG.pif |
| Size | 66.5KB |
| Processes | 2056 (purchaseorder.exe) |
| Type | PE32 executable (GUI) Intel 80386, for MS Windows |
| MD5 | c116d3604ceafe7057d77ff27552c215 |
| SHA1 | 452b14432fb5758b46f2897aeccd89f7c82a727d |
| SHA256 | 7bcdc2e607abc65ef93afd009c3048970d9e8d1c2a18fc571562396b13ebb301 |
| CRC32 | A9D52B88 |
| ssdeep | 1536:lR2rJpByeL+39Ua1ITgA8wpuO5CU4GGMGcT4idU:lR2lg9Ua1egkCU60U |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | f598af3916998eb8_grtdqgzk.url |
|---|---|
| Filepath | C:\Users\Public\Grtdqgzk.url |
| Size | 104.0B |
| Processes | 2056 (purchaseorder.exe) |
| Type | MS Windows 95 Internet shortcut text (URL=<file:"C:\\Users\\Public\\Libraries\\Grtdqgzk.PIF">), ASCII text, with CRLF line terminators |
| MD5 | e10e71f1be08cc27ec81ae149f05777e |
| SHA1 | f3606ea2a346d7364fb3a941f8399f140dea4c1f |
| SHA256 | f598af3916998eb8fc3bcc56af3c6351241b34114127e5b24acbcd62b27f2fdb |
| CRC32 | 8F3A587C |
| ssdeep | 3:HRAbABGQYmTWAX+rSF55i0XMfBvsbx2AcuAZn:HRYFVmTWDyzIZEx2AcPZn |
| Yara |
|
| VirusTotal | Search for analysis |
| Name | d08ccc9b1e3acc20_kzgqdtrG.cmd |
|---|---|
| Filepath | C:\Users\Public\Libraries\kzgqdtrG.cmd |
| Size | 60.9KB |
| Processes | 2056 (purchaseorder.exe) |
| Type | DOS batch file, UTF-8 Unicode text, with very long lines, with CRLF line terminators |
| MD5 | b87f096cbc25570329e2bb59fee57580 |
| SHA1 | d281d1bf37b4fb46f90973afc65eece3908532b2 |
| SHA256 | d08ccc9b1e3acc205fe754bad8416964e9711815e9ceed5e6af73d8e9035ec9e |
| CRC32 | FAC16720 |
| ssdeep | 768:KwVRHlxGSbE0l9swi54HlMhhAKHwT6yQZPtQdtyWNd/Ozc:LbeSI0l9swahhhtwT6VytHNdGzc |
| Yara | None matched |
| VirusTotal | Search for analysis |
| Name | 3b0ffa5badeffc97_grtdqgzk |
|---|---|
| Filepath | C:\Users\Public\Libraries\Grtdqgzk |
| Size | 1.6MB |
| Processes | 2056 (purchaseorder.exe) |
| Type | data |
| MD5 | 8734472a01349504f49ca4dccbc11a8f |
| SHA1 | b7eccbfa0247e92f0cd234d06b928617025de32a |
| SHA256 | 3b0ffa5badeffc9726c6c6da3755e607104295f69f60f8b2bdaac2ee04ff3519 |
| CRC32 | A5865237 |
| ssdeep | 24576:X7VkHwAuoinlMyHoKNIbvXypJidFNdRdbIFBe+Z:uHTQlRNIbvAkdFNrtIFBlZ |
| Yara | None matched |
| VirusTotal | Search for analysis |
| Name | b3e58b2a0add3024_pno |
|---|---|
| Filepath | C:\Users\Public\Libraries\PNO |
| Size | 4.0B |
| Processes | 2056 (purchaseorder.exe) |
| Type | ASCII text, with CRLF line terminators |
| MD5 | 0d25c4052914983b893afa9b1c3141d2 |
| SHA1 | e75f05ecd4701eb25efb7947fd5fcf8376fbff9d |
| SHA256 | b3e58b2a0add30249efe38cfe9955d765d8a0a882b239ed208f16e38db62a00c |
| CRC32 | 6BD82C29 |
| ssdeep | 3:Av:Av |
| Yara | None matched |
| VirusTotal | Search for analysis |