Copia de Pago_ Banco Itau _Pdf[.]img | Triage

Sharing

General

Target

Copia de Pago_ Banco Itau _Pdf.img
Size

1.2MB
MD5

c1daa89f21942c84eaaf301ed6d8cf6b
SHA1

91ece56dfd6e90609897677f54973e9fc55a9a44
SHA256

4feefc524e13bf76b499ff6037e1ea45afc430fbcd2424ee4a92e2ad34b52727
SHA512

a66393aa1ea48e3c1e73a382d18c31c695db3cb7eb96e7174f002dc4e1d7ac99e05b60f15684a294b893bf47ed0f48141d916924b9b77226ff6f544551571437
SSDEEP

6144:JmN2ceizqQiz5kupgx344B2BUBSwBWBUm4J4nN9CBw4PEcIKeCBnNUWmfIQDLIvp:J3AzqQiz5kmgqRMeCBNU+wuZJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/COPIA_DE.BAT

Files

Copia de Pago_ Banco Itau _Pdf.img
.iso

Password: 12345
COPIA_DE.BAT
.exe windows x86

Password: 12345

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 413KB - Virtual size: 413KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ