餘額支付[.]pdf[.]z | Triage

Sharing

Copy URL Twitter E-mail

General

Target

餘額支付.pdf.z
Size

393KB
MD5

1dfd9cd680c5410d552d4d8255be311a
SHA1

cc133a196ccc1b1b9eef00496598f11a51a6a68f
SHA256

b6be3ffa848a74cc7414802e9482a6a214b733c61c7304d8f789f88aca755e30
SHA512

67275139f7a5f319f30f49294207bdac2c4b190a0c4c933848ef8d4b2a4b8f0615cdef6a3eca245aebf0cded670f0b5eed8a6469abe7321049bdebfe85133459
SSDEEP

12288:X+zYDAFpAhE3asZ5/hUs0LW6rWwMXwMFEjLQ+OVHiSWqW:mYIcE3aMxetRWwMXwMFkEMXqW

Score

N/A

Malware Config

Signatures

Files

餘額支付.pdf.z
.rar
餘額支付.pdf.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 426KB - Virtual size: 426KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ