Static task
static1
Behavioral task
behavioral1
Sample
Payment confirmation.exe
Resource
win7-20220812-en
General
-
Target
Payment confirmation.exe
-
Size
744KB
-
MD5
2274229a80d18978482606d9f1e90803
-
SHA1
7c6bcb372543c6a42f8888c1eb11c27ed2a7fd98
-
SHA256
cdee2421636a518cb027f5670691b8f879676a67516d7fb525432ca74efe6bee
-
SHA512
6806daa7f21737e2721b061fa89c166b1615bf0e11400db657dbfd74b6c91d698e929dc0289efc4e7c9e07e48bb972db91c7d485dc56ce9bb9bf60c92212d0ab
-
SSDEEP
12288:RtoaV1ki3YjdK+ZsGfXa24Lz/qMniCgZSAZdY+rcGdo+cQI5At4Mw/+/S:RtfVui3YjdKM+LzyoFWdh/do+ttml
Malware Config
Signatures
Files
-
Payment confirmation.exe.exe windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 742KB - Virtual size: 741KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 920B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ