Confirmation transfer MT 102_Pdf[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Confirmation transfer MT 102_Pdf.exe
Size

1.4MB
MD5

2b542ee286de1ba8113d03b84c6e812b
SHA1

021b23c24fda867ab0a7e28f6449e9a2391b2e42
SHA256

0c10e1c8152eb2a30a9270ef79401b905e42bb6706d71094b59dd46502336f8e
SHA512

27c4acec7e55c35f80b78e7df6ffb7a6a5b83876236f08e8288c16f2bdd3b0ee5c3e2acfe3e757a1aeee15819184082d49acaccb66d96c14c9694b35ec73cfbf
SSDEEP

24576:qqGnNGcNUblLiV5UkDloLdb1PF57Y9T1Xr7oiUHnqhe0o3Z6sQCobc:JcNIlrLTd57Y9T1Xr7oXMelTobc

Score

1^/10

Malware Config

Signatures

Files

Confirmation transfer MT 102_Pdf.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ