Payment Confirmation[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Payment Confirmation.exe
Size

632KB
MD5

e6e980686110b2e688ba0abbdc8b6ff7
SHA1

759682422be8d1df52d3725876380f1b690b7c7e
SHA256

064b63296e5ed2b796567b20dba4dde90783018b9058facf6fe407c360df7779
SHA512

ab1d200a2af619e6b811a7289ee3fb92af279330c8e2a8ebd3bca6d37c813b8d93532e8ccfee9f8c35a7fd3df09c5aae8f2b420cdca8a3f29067ed01674ea382
SSDEEP

12288:xwhuJIQvV4Eiu33NUQBXS/4pboT4GSi4otf4VUcBkLCCY3zps7:iuJd/iu33NUUi//4GRFtZcBmC3Ns7

Score

N/A

Malware Config

Signatures

Files

Payment Confirmation.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 630KB - Virtual size: 630KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ