0879cb8e48a173b1eb22229ffbef66af17d50638c4f8742bacda83709b44b42f | Triage

Submit
Reports

Overview

overview

Static

static

PAYMENT.exe

windows7_x64

PAYMENT.exe

windows10-2004_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

PAYMENT.exe

Resource

win7-20220414-en

masslogger collection ransomware spyware stealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

PAYMENT.exe

Resource

win10v2004-20220414-en

masslogger collection ransomware spyware stealer

windows10-2004_x64

0 signatures

0 seconds

General

Target

0879cb8e48a173b1eb22229ffbef66af17d50638c4f8742bacda83709b44b42f
Size

1.2MB
MD5

4c94b237e0cffcefb2a2af2b34866293
SHA1

ae27db77180adf467ac89c0b92050d74ce93ba50
SHA256

0879cb8e48a173b1eb22229ffbef66af17d50638c4f8742bacda83709b44b42f
SHA512

89067fba37a1109b72ce0922fc40dbaf2f2a8372589703bebe84aa2711c3a940cedf9c478006edbf069afdff90dd64766c63351bcfa026854230d6a2f9a4dcf1
SSDEEP

12288:POjK7ukhRCb7EjmpteJ//Lt5CNYpnv+lUMrRtf4LXuqjq20:POjK1hRCb7/pti//LPnJY1F4zq20

Score

N/A

Malware Config

Signatures

Files

0879cb8e48a173b1eb22229ffbef66af17d50638c4f8742bacda83709b44b42f
.iso
PAYMENT.EXE
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 565KB - Virtual size: 565KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy