d28a86bcfc1a16880fcf3e42f04a4a840f92086ae386d180a5c22e7f354c74a3 | Triage

Submit
Reports

Overview

overview

Static

static

Payment Slip.exe

windows7_x64

Payment Slip.exe

windows10-2004_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

Payment Slip.exe

Resource

win7-20220414-en

formbook kfr persistence rat spyware stealer suricata trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

Payment Slip.exe

Resource

win10v2004-20220414-en

formbook kfr rat spyware stealer suricata trojan

windows10-2004_x64

0 signatures

0 seconds

General

Target

d28a86bcfc1a16880fcf3e42f04a4a840f92086ae386d180a5c22e7f354c74a3
Size

199KB
MD5

62cb528f84fda91308364f6c535f5dbc
SHA1

4a1f614c76bfbd52c37c5f742cf64e6c6b314f0f
SHA256

d28a86bcfc1a16880fcf3e42f04a4a840f92086ae386d180a5c22e7f354c74a3
SHA512

4929d8991a638e28ad8b2989d192c9551eb5aec46449e0963af469581f229bae54dc146bf132f3f4ec44e07b2fd3350b2833c8af0929ccfe442e1a2b482fa68b
SSDEEP

6144:wmOOLxk1zQMvI2UzjYAq1O/a5fv5pybic:j1k1zQMvI2UzzW+WhpMic

Score

N/A

Malware Config

Signatures

Files

d28a86bcfc1a16880fcf3e42f04a4a840f92086ae386d180a5c22e7f354c74a3
.zip
Payment Slip.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 276KB - Virtual size: 276KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy