TT Swift Copy $90,000[.]00[.]rar | Triage

Sharing

Copy URL Twitter E-mail

General

Target

TT Swift Copy $90,000.00.rar
Size

669KB
MD5

dd367911376f92b64dc2c6549726a99f
SHA1

5ec8d8b819d370764ad0bf1a5429ee5bee425825
SHA256

19ea40a531374b37bd1d98f4921b056fd853ebfc371ef907b2947203ccd197de
SHA512

3e73201194e995f41352fc58d819f77472262c0836e1a27ac9e1860ca8b671dc6c3b87b6bedbc3e436066efef2c5ee33a224a4def70071ff3f8dad513fcbe606
SSDEEP

12288:cazUNT59oDN7t6RIP1fdZ3PdoU6VP1ehj7/qjRzH5aqUXXOoXdYtyBz3:caYNl9oDdtuq7EU651ehP/azH5nWX5dH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/TT Swift Copy $90,000.00.exe

Files

TT Swift Copy $90,000.00.rar
.rar
TT Swift Copy $90,000.00.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 748KB - Virtual size: 746KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ