Payment_Slip_Pdf[.]exe | Triage

Sharing

General

Target

Payment_Slip_Pdf.exe
Size

598KB
MD5

aa2079c97f01161455170da935ff6530
SHA1

f6e7d042ba9d81548e5cc34a4e716429ae64ba16
SHA256

cc78351177d3f5c8044dc5fd912c94c0149ac90af40f62ca059ce78f96fc9ab0
SHA512

1f3f118800648e811346ed783a7b44ef0ba3143b89c1f7d4dd36bf7ff59a9321eadee01a05891e251d43f50439be79ca488c6e4032ce7905cee7808af5b83747
SSDEEP

12288:Qam9Y1PYyVFh/I1K5uodK+F9SWwsukeF7xUajIKkdd2ag3HIs7qmDr:Qam9Y1g+FoYuC9SJsukeF7x3ML

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Payment_Slip_Pdf.exe

Files

Payment_Slip_Pdf.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 595KB - Virtual size: 595KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ