098e6ea842a71eaa6ba2afc8938314212e4b34d50383bb730e0bd322830efb79 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

098e6ea842a71eaa6ba2afc8938314212e4b34d50383bb730e0bd322830efb79
Size

621KB
MD5

6d9e77db19700259e30a1aedd1fed0ec
SHA1

4b45e9ef71f75aa181ea159806a94e91898d5b57
SHA256

098e6ea842a71eaa6ba2afc8938314212e4b34d50383bb730e0bd322830efb79
SHA512

a7b03d72d1650c578458125067db878155b5e347bb63478cdba67bbde760f3017666bfad505eea2525fe67f681220da23b1a6181348435614742753961b9fd42
SSDEEP

12288:sIa8CvzzYCUKMlQRrHnjISz3vq6GHBmyT7VB4DgBdTpX:laxTUvl6HnjHq6+nfj4EtX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Payment Invoice10H2.exe

Files

098e6ea842a71eaa6ba2afc8938314212e4b34d50383bb730e0bd322830efb79
.zip
Payment Invoice10H2.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 648KB - Virtual size: 648KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ