Static task
static1
Behavioral task
behavioral1
Sample
Payment Advice - Advice Ref[A1T9IvYc5tfi].exe
Resource
win7-20231130-en
Behavioral task
behavioral2
Sample
Payment Advice - Advice Ref[A1T9IvYc5tfi].exe
Resource
win10v2004-20231130-en
General
-
Target
Payment Advice - Advice Ref[A1T9IvYc5tfi].zip
-
Size
672KB
-
MD5
d8e61bbe97b4d4cb7253119f3567091c
-
SHA1
792a8994425369249735f6dbc70377eddf592fbb
-
SHA256
56860daf17c4b320906062c4cb584870f93ae17b3659978cf9a812c66b1652c7
-
SHA512
e50c25e4278b5a974fbf72c0a59c9f87ae7435e826dc0166cdb0ea53a798abed299c3b404be2877b87ee1cc53cf129da857c583497b89a568b82b0ecf68ccd3a
-
SSDEEP
12288:f9scD1OxUzL5Nb6JmFgl8uEdG/d1SE2ZQtnmU+CnOye5l0yruC:fd1xb6Mgl8XG/LSE4QZmU+C1wl0dC
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource unpack001/Payment Advice - Advice Ref[A1T9IvYc5tfi].exe
Files
-
Payment Advice - Advice Ref[A1T9IvYc5tfi].zip.zip
-
Payment Advice - Advice Ref[A1T9IvYc5tfi].exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 688KB - Virtual size: 687KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 7KB - Virtual size: 7KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ