981b7c1216887ea343e4a67f817045699a54ac9a284ba9f5fbbaf1609c930aee | Triage

Sharing

Copy URL Twitter E-mail

General

Target

981b7c1216887ea343e4a67f817045699a54ac9a284ba9f5fbbaf1609c930aee
Size

771KB
MD5

6a5e4ecf1f230c752dec9b7dd596a144
SHA1

041a44d282b152724dc8024970878883007cb49c
SHA256

981b7c1216887ea343e4a67f817045699a54ac9a284ba9f5fbbaf1609c930aee
SHA512

cf6b6dab4c640b92ad9552dbe802b67966c21169fc86d4d2ea84eb533fb3bad10d0b0f163ddd1d2ea650f722e96fa699b5510e92d0663fae2238e605d354079a
SSDEEP

24576:YkG0Kt7FWsaB86lyEYRK/V1dPHgOQAlvqSgYZ:YkYFdLEOK/V15Hgi1JgYZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/PDF Payment copy 4KG6djMxnWjuKss.exe

Files

981b7c1216887ea343e4a67f817045699a54ac9a284ba9f5fbbaf1609c930aee
.zip
PDF Payment copy 4KG6djMxnWjuKss.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 806KB - Virtual size: 806KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ