PAYMENT SWIFT (MT103)[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

PAYMENT SWIFT (MT103).exe
Size

632KB
MD5

2ea006ca42b6a1e2b79e749722656e47
SHA1

347702ae7e92ba3c7881339a4e76c395961c6740
SHA256

15f5262b2a712130193850547e2d45da8c924f75df855855b6a0c2b4b333a821
SHA512

e801b84b2025e4748ba5403c728c90257cce3fa3694bf3dc88356f99065585a533d3321b7e29506471188362c5b2e28485ab4607e3571ae152f3544c5a4760a5
SSDEEP

12288:8PYPfY7DOel3ymw9MurgEB2eX0S61UQlYG4lFL9WO:8PYPg/d3yD9X1Mex61UQlYbv5WO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
PAYMENT SWIFT (MT103).exe

Files

PAYMENT SWIFT (MT103).exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 629KB - Virtual size: 629KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ