PaymentCopy121922[.]exe | Triage

Submit
Reports

Overview

overview

Static

static

PaymentCopy121922.exe

windows7-x64

PaymentCopy121922.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

PaymentCopy121922.exe

Resource

win7-20220901-en

formbook snky rat spyware stealer trojan

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

PaymentCopy121922.exe

Resource

win10v2004-20220812-en

formbook snky rat spyware stealer trojan

windows10-2004-x64

9 signatures

150 seconds

General

Target

PaymentCopy121922.exe
Size

733KB
MD5

05271d119938959aad2d32404ef0d9cf
SHA1

1409bf13515044a066e694493182b7405ea6efaa
SHA256

6ff54e94c6557ae213d67159c8c8bbdc84079801ba263631f9c7a798f660eaad
SHA512

e313a4313611c66104563cc3dde78dd9869a5b5070082b3d859bdb96b493fdc2fdbab4014baa3ecc7196b3d44c6842f2f1f5b943e119ac316872bbaed911ec15
SSDEEP

12288:5xx2cHss/S+PsN2/fFac/uL9eEhkAEZC4Gf3acHVNc42xtAq:rx2cHs6SqHdaOuBEZC4u37Vm42nAq

Score

N/A

Malware Config

Signatures

Files

PaymentCopy121922.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 731KB - Virtual size: 730KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 896B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy