payment july2023[.]7z | Triage

Sharing

Copy URL Twitter E-mail

General

Target

payment july2023.7z
Size

541KB
MD5

61f6754ef1bdac2426f385cf394bf8ba
SHA1

81e03243eadeaedf3b6ffee3ab8bb7b059d53533
SHA256

46a193693d3d145524c988e5f0aceac94dfe4599557d35b3ce6526a0e061953e
SHA512

46465d45fcb385112e89ce7e4bdb05e8234f43eb7f217bd4b6424ba2c5ffcbd0b94b19d0d0767235a1760c4f635325f2923571b1cc4688ce94b628234855bbb0
SSDEEP

12288:I4vTZnpXlUWFcGzdslVGWZDtENwfAhNkC7NGXh/EiqtLfEKGKSPpOJaYIGKyT:IuPXJqGzd6kWZDgSSNGREiqtoKG7eaY9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/payment july2023.exe

Files

payment july2023.7z
.7z
payment july2023.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 571KB - Virtual size: 571KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ