2a633afcb2dad9516cf533d4851290ed5a643a9eba9b605f228961ecc092ba13 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2a633afcb2dad9516cf533d4851290ed5a643a9eba9b605f228961ecc092ba13
Size

1.2MB
MD5

f89a94af5c2287cc59aaf403e7ce9f5d
SHA1

6fd2bd0c9ff90d730f1f823b4b0301c7c82782f8
SHA256

2a633afcb2dad9516cf533d4851290ed5a643a9eba9b605f228961ecc092ba13
SHA512

789450fa54a614ac72368c8a3eb33a48b3cf3e9649ea6ee8259cf3da9ac9d23a61483a94785cfe5a7721ead4a4a169fec8f3a475649badf127ebc0668b4a8b8c
SSDEEP

12288:klYifT7wT6qz0IWrkmpF3LhE7ukBdaA0e3gQBGzj5BJe3MqqIR8jeqvR97M:ji3sAfrkCF27ukmujBQj5UGINqp9o

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/Payment copy-INV 311197.scr

Files

2a633afcb2dad9516cf533d4851290ed5a643a9eba9b605f228961ecc092ba13
.iso
out.iso
.iso
Payment copy-INV 311197.scr
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 654KB - Virtual size: 654KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ