swift remittance[.]exe | Triage

Sharing

General

Target

swift remittance.exe
Size

572KB
MD5

72886107b71c217831c6966d666bef08
SHA1

f234f498b7712c6ec6893479861a3ddd2220c9f6
SHA256

ecbdd22e120012cc767cf5a8498cb20011048df2bb38e7baf1fb691aebf02af9
SHA512

cbf99cbee33631a443e74ec6bc88b3761660877cd1cbfe3843594597405541c7847b1bc07b45cdbeb2e2afecefa72d4ff8c05e6de2cd22136c71ed03766982e7
SSDEEP

12288:tDp8/BdnKg2N0MC4rcHkVSUjZbAcIa7mQSgNIchFE:k/nKg2DC4RVjWgNIn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
swift remittance.exe

Files

swift remittance.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 570KB - Virtual size: 569KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ