af630ff0ac367e2f1f4ac0984783a3b4c0dfa0402bb312e4ef856a076744d64c | Triage

Sharing

General

Target

af630ff0ac367e2f1f4ac0984783a3b4c0dfa0402bb312e4ef856a076744d64c
Size

755KB
MD5

f112fba16d3dd20ae348e4b74353a3b0
SHA1

9806602b4f88ff2bfcfbe4e2c3d212fca9fe2659
SHA256

af630ff0ac367e2f1f4ac0984783a3b4c0dfa0402bb312e4ef856a076744d64c
SHA512

1815cd6af235a6d828c5a40c662ba41257305aa27c1946bb13b3533706c6ffaba542227d37bee319ebe97b4ed1270bb0eb484bff7931dad28c4af73876d2990f
SSDEEP

12288:CfqTlCR1swC+kh8j+aOSW4Kpy4Gi6BklViFvgB0e1D3WuW5dZ0IAxM7G8:oIlsswCfh0+aOppy4icVilgrbW1hB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/YU SV Payment.exe

Files

af630ff0ac367e2f1f4ac0984783a3b4c0dfa0402bb312e4ef856a076744d64c
.zip
YU SV Payment.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 830KB - Virtual size: 830KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ