27c6a9a5679bc2dc1d043e00a5a74e6a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

27c6a9a5679bc2dc1d043e00a5a74e6a
Size

324KB
MD5

27c6a9a5679bc2dc1d043e00a5a74e6a
SHA1

c246d392802fdbfc14c44699deb760b01312ce05
SHA256

2b0009064dcc5615298a66d85be73849e1492900cca0464548fba927cc2d66cb
SHA512

383173134b5e8f871789014eb1015f7bb1f566705be2549681560e2b5e861efab669f32a8dcff0fb1cdf6b9521699905a9a600a4d995e07b39c0c7c1d2a34eb3
SSDEEP

6144:3UzNfmot/ifVkQvDbUH1dbdjl4tEot5LyPiqkBDsueT6Db1Xnmz33Nuz9Sb6p:EZfmmaeOKBdRAE6LdqCeCXG3dS9Sb6p

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/Proof Of Payment.scr

Files

27c6a9a5679bc2dc1d043e00a5a74e6a
.eml
Proof Of Payment.rar
.rar
Proof Of Payment.scr
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 245KB - Virtual size: 245KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
email-html-1.txt