квитанция об оплате[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

квитанция об оплате.exe
Size

661KB
MD5

77dc472be4ecbf7d6e56d4d791cf19d1
SHA1

482b2eaecb8ff09e7d3b9866328ba08af7beb5e2
SHA256

1cc2d092ea71815469b12182d8d3b8fafe20ad112c1acbfcc841f5d4dc9da56d
SHA512

2ff74fb08860cfc566111e0b50e47f96fa262b485672846cc5457534975b0ceed1e7e6688d22bf45947df1d03eea0a9009fae4be24f9be17287468d1f239e089
SSDEEP

12288:0EaIIYM1bh7EZr5QMYrHtxG2us6QAGAOStGhzvj2oJ:0sIYIb21WMCHt82us6fGAOStES

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
квитанция об оплате.exe

Files

квитанция об оплате.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 653KB - Virtual size: 652KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ