Resubmissions
28-04-2024 23:12
240428-27byxsbe66 10Static task
static1
General
-
Target
Payment_Remittance.exe
-
Size
3.0MB
-
MD5
b75378cd65b397dfd216b3b95d4b972b
-
SHA1
d34f47a90a9597f3fcacf344b4e6aa5fd1df26dc
-
SHA256
98f64ae1cd291e06f779001f14df05ff27e3eb635870b0c7e80f38b0ca27393a
-
SHA512
8ef2e12660b4012b0c632d0e8dfca674611243e80e4b3ed0b93f8be44026a040e4521a79036ca6da3d1418e181352a63c2aca996d22a69bf7d00ae37fdcf02f1
-
SSDEEP
49152:Vg86uJIr8YM9WlCR6WPRVJ9OTKqTJe11AOuxRAoGLLCwKrk5vdp6SxwicWDRWB2:Vg9RizJBqtMAOuxRS9DpPcMRWB2
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource Payment_Remittance.exe
Files
-
Payment_Remittance.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 3.0MB - Virtual size: 3.0MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ