Static task
static1
Behavioral task
behavioral1
Sample
OVERDUE PAYMENT LIST.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
OVERDUE PAYMENT LIST.exe
Resource
win10v2004-20220812-en
General
-
Target
OVERDUE PAYMENT LIST.exe
-
Size
868KB
-
MD5
4b157f58016445399705b1e1aa57d282
-
SHA1
7938ea46e93d1f7d80e84687955fc2894f6fb051
-
SHA256
b188a13a9f8d13e388089ecbe4725f5c0e2a17c2f1036e0a7ab0cf5aab878549
-
SHA512
f03250454fbc65f925833cee3e3ccb6f8b183e38b17794a7e4974f776d5463ada881bec535c73263dfc55e83ea8ba88db98de48af4cb5944785578717d0c5c3d
-
SSDEEP
12288:IEVq7Kg9kY75YoJAbek8NUrQHSrqWkhbmCPk4iFssKlSwx7IkNLHp:Cugb75YdFcWqW4bS4IsNQw+mjp
Malware Config
Signatures
Files
-
OVERDUE PAYMENT LIST.exe.exe windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 846KB - Virtual size: 845KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 21KB - Virtual size: 21KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ