PAYMENT CONFIRMATION[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

PAYMENT CONFIRMATION.exe
Size

1015KB
MD5

1a2b584c7467de622219287c8e4aaae9
SHA1

530bc1f9361b3c50bb83243b485bb3fa0c1aa431
SHA256

ce5c147f75c354710869fde43cdc99afb90de8f43d5a0a58cd7456ade759b110
SHA512

a2686250951c13280022b29ef96442b9c10f11e9347279bf7d5329378cef189cb325a16ef0af38ef8885b7844bab41a95644e3f4c3d21a3f697bee19fb4de142
SSDEEP

12288:DMQgbiZU6XgScm6mTGL0UvCYCt2I4CeBDY899y3GWYK1CsNQ+LrkABooLcTt6iMi:nPXgVSTGLXCYCYUeW69y2Wn1wwGM0

Score

N/A

Malware Config

Signatures

Files

PAYMENT CONFIRMATION.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 809KB - Virtual size: 808KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 205KB - Virtual size: 205KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ