swifttelexconfirmation[.]exe[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

swifttelexconfirmation.exe.bin
Size

1.4MB
MD5

cbd57f919d96599a67960e241494dec6
SHA1

0d0eb96aabd823b999102a707cd31bc68753ecce
SHA256

c8d4115b7278475904328c0805ff2e64afea6d6b4548edefe0e4e3e1c8ccf08b
SHA512

e64ea1bf90787655f7844b53feec1ed03ec3de00b6e4fb54e5a272b214233ef71da12d495159fbf20c25254eae3ac1b8c9dc129d220a25378575aacaa9eac31e
SSDEEP

24576:OpoFeuT1A/tyuKu3suuNxbs91Auk3WgpO1U:R0r3dop

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
swifttelexconfirmation.exe.bin

Files

swifttelexconfirmation.exe.bin
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ