Banco BPM Payment_Swift_copy[.]7z | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Banco BPM Payment_Swift_copy.7z
Size

29KB
MD5

48ca0f3f5cf19fcf63207fd1729aa8fe
SHA1

201e396bec645689af4352acc7e988267e693d60
SHA256

2e478f29b96ebe68c675c2d4bf65192f7bec0bc4608230dd9e0096dd8b7c0ccc
SHA512

461d8b33b3d2fee397d3a9f11ce5adbc5545560ed3a9cf6269d6e521a3491673cf6a53a08dc3d14211e5b1e42f27b949d3b703d6d3701471382c3769cb511438
SSDEEP

768:Lo+ppBdAxnzRukfe93U9b7TeF+e80MGlt:Lo+pDdAlRTS3U9byL4wt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Banco BPM Payment_Swift_copy.bat

Files

Banco BPM Payment_Swift_copy.7z
.7z
Banco BPM Payment_Swift_copy.bat
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 169KB - Virtual size: 168KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ