Payment receipt[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Payment receipt.zip
Size

707KB
MD5

830e1327a3bf9425b59e6e7cfd127ed2
SHA1

782b1db05d62f6f9ff2e02b7fe30b92da066fbb1
SHA256

66518f8e52416de275a0a986b567c34203a558ac421109b53484f795d88268d8
SHA512

8f5147ce917809e9df9ccac9ad9d0c1bd524bc357cd3c0756d692380fa715245aa0cbb56d1f8e169a7afb79e76d26a900822b8a2c3fb559f9c29a1eba606d34b
SSDEEP

12288:k0RPVpBF47cStUDGNr6nLfww1mnuW7U+/ZRQdJ99GGXy/8DlgjT3AZGkh:hRPHX7StUgW1kO2ZOBC/8CT30h

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Payment receipt.exe

Files

Payment receipt.zip
.zip
Payment receipt.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 814KB - Virtual size: 814KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ