MT103 Halkbank,pdf[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

MT103 Halkbank,pdf.exe
Size

884KB
MD5

ba9fd0a1cfe1b2a1067d80ff3f6d6f42
SHA1

97c3d9db81e65000f90701773f38b79959397680
SHA256

0569738ce15eac35fb934871ffc136a1a73800be88e9c13d96c4bb05b863ee93
SHA512

7314395d3d87a385e64a1da2036995e8dd7f0e8a11658ad03a315f8ce51a40c0e34953a2937e37e79c320532d6a3f5597ab6d11debd3345702b342a24a4fe2fe
SSDEEP

12288:C6dO8lpXU5ZkX+kjWyrNutPnFpk5SfufmuJXxgc11oUL0glSx54GS0/om+9cReMg:CupxevFpg1XC2JVSx5rS0/oV94W

Score

1^/10

Malware Config

Signatures

Files

MT103 Halkbank,pdf.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 867KB - Virtual size: 866KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ