MT103 Halkbank,pdf[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

MT103 Halkbank,pdf.exe
Size

544KB
MD5

c4a37eac7e54bd93ae99b770a0d5819d
SHA1

9f3b3be1b68499bf7bb35746c8dee12fc4f94be6
SHA256

6c5ef9c0be3fda1da200230e48e080e16cc35559704ab10911175aac1251674b
SHA512

c47885235cfb7cb2b8f821cdd635c21cc0533c7b0b4da74eaf622d86374d7b9d34e2abf99577f4e6c7dc6c474afb4bcb6b2a2de0a50c61d5e37a82c94b4086a1
SSDEEP

6144:YQGCpedL5cQWqct/A0urrS2GhNnYyyy0kLPd7YIL41T0avrCx4lGcpPj1rVLq6qp:ya/5u62iNbJql+x4lGcpRZL9vQzb

Score

1^/10

Malware Config

Signatures

Files

MT103 Halkbank,pdf.exe
.exe windows x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 818KB - Virtual size: 818KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ