c5bd88480dc7dc03c3cb6db29c4b0104 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c5bd88480dc7dc03c3cb6db29c4b0104
Size

455KB
MD5

c5bd88480dc7dc03c3cb6db29c4b0104
SHA1

1b1c9ef96d373e819fff001197898041f782f1c0
SHA256

0a833ec06fac34128dee3a5ef9bda802aac68af3d7fa53169ce2a7159a79ca52
SHA512

7179bfd5a27b2f9667776ebf34ce4afcb33f7cc25b08b8a76f57b3aa8cef60864450a2291609fd9ac7d867d5a7f442de769778cf121792285af03025a3fa1c3f
SSDEEP

12288:zIz/KQbL8NBLiy7Z4/ntFkm00HwttVIxqQljlnLMgN2ExG:dQbL8bZWMP8oVWq6nLMr3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/bank slip.exe

Files

c5bd88480dc7dc03c3cb6db29c4b0104
.rar
bank slip.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 446KB - Virtual size: 446KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 223KB - Virtual size: 222KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ