CREDITED PAY SLIP[.]rar | Triage

Sharing

Copy URL Twitter E-mail

General

Target

CREDITED PAY SLIP.rar
Size

651KB
MD5

b62a1feeabf595bd2caaa1ddcc6f78c0
SHA1

39371f833f622ba0305945106658d430df3e3b9d
SHA256

a7b9b1c09be1de07f1822163a243c2052dc5b6c5279bc3b34cda143cd6a7cf6c
SHA512

b38dc0ee759a0eefbfa2ed62008b5c7c2d60ea5e942e0c7a6692278cfc86d69dbe7c64a8da7e0951b2489847d13edcab1dcd352381ea2f31b4823c16bf0c4022
SSDEEP

12288:jCLuvDx1YqUiqEIr1A+DLRUKKr7LgEV9bAtSHIllpQYMmsIBkvL3Rq:YuvVbUbr1b2TvCSHI5MUBkvbRq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/CREDITED PAY SLIP.exe

Files

CREDITED PAY SLIP.rar
.rar
CREDITED PAY SLIP.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 822KB - Virtual size: 821KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ