Payment[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Payment.exe
Size

675KB
MD5

8e8d36d6291cbc0b8415c517f84f1d32
SHA1

ae69cec7ed957d3bd0dbe638e1ae6fe163d15ce3
SHA256

ba0560b683b290edfbe32adaf7c262981f67456b67e52d4dfe230647b043c85e
SHA512

9736266889da3919bdc757fc777a06f96842ed1174003c1de3f0eb8588bbccf99de4d6aaa7f7558aa969e196d33af8a122bdde49c145f493f09b243eb6fa4cea
SSDEEP

12288:qpQCe8B87VcH441y5TrG9bTXGP95M2PBmvujL/OVeh0VA:qX+J+441Ea9/XTA

Score

N/A

Malware Config

Signatures

Files

Payment.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 485KB - Virtual size: 485KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 188KB - Virtual size: 188KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ