TT PAYMENT COPY - 10[.]31[.]2023[.]gz | Triage

Sharing

Copy URL Twitter E-mail

General

Target

TT PAYMENT COPY - 10.31.2023.gz
Size

550KB
MD5

446dbeddb22e177aebf5bd96ce97bab4
SHA1

5c7462f1d4765952a3688f8f11d015320ef19e77
SHA256

94618324cca3d7ec27d313d07ace47ecff68327fc88ae4e0db363e0bedf5ab37
SHA512

79245c1c3e23f274fa90d86696e94da9c405bfd98a67bc0234f4dca661e390c935778836da78c639d8c7cd4eccc93406ed02a578de38b0e734977c576f65cf4e
SSDEEP

12288:1h879MXLhCdYSbkW/7Qv5EVmiGYw9V530GHBW5rtn5s9tAyQiAIpf:1S79M7sdYSZpVmiGP9VN6rtWtAfiAI5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/TT PAYMENT COPY - 10.31.2023.exe

Files

TT PAYMENT COPY - 10.31.2023.gz
.gz
TT PAYMENT COPY - 10.31.2023.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 566KB - Virtual size: 566KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ