BANKNOTIFICATION452968460273244222567875432FERTYJHG2U20[.]bat[.]exe | Triage

Sharing

General

Target

BANKNOTIFICATION452968460273244222567875432FERTYJHG2U20.bat.exe
Size

1.2MB
MD5

683810600892cacdf665444dd2433bf4
SHA1

4c6dd1cf0cc29c46faa5d0ed62cd300893c00120
SHA256

af4302878827cd62e91d7f42d963b213f4dbb220b28148f86f63a799666b1931
SHA512

ca5b54af5b584ace19e4b3f675c2aec64abed2e859dbaee248c29ea9966464a63c287d6c5aad07391392cb5c3c9efec2a134e0131abc08026aa0dbb3dafbe5b8
SSDEEP

24576:xcUMsJkI/T/O7N/Rzor3Iu0aMp/7YcTgXkV5GE9q:xcEaWOhZor3Iux+zVTJ5W

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
BANKNOTIFICATION452968460273244222567875432FERTYJHG2U20.bat.exe

Files

BANKNOTIFICATION452968460273244222567875432FERTYJHG2U20.bat.exe
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 436KB - Virtual size: 436KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 726KB - Virtual size: 725KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 51KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ