C:\Windows\Containers\Confidential\DotnetGenerator\Stub\Projects\may\31\NAM\obj\Debug\NAM.pdb
Static task
static1
Behavioral task
behavioral1
Sample
YapiKrediInternetBankaciligi_Dekont_20240531_266_40240020.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
YapiKrediInternetBankaciligi_Dekont_20240531_266_40240020.exe
Resource
win10v2004-20240426-en
General
-
Target
5c340f4ea2c37e9fbde26ec997989653563952b4dcfff6990fb1ab0a5301443b
-
Size
587KB
-
MD5
9e99a893f1861481e62e8a46787a9122
-
SHA1
15745db6e942430e78bff9029aa7441fb6051378
-
SHA256
5c340f4ea2c37e9fbde26ec997989653563952b4dcfff6990fb1ab0a5301443b
-
SHA512
ee7375ab60086eac8e6ff16f28b377dfc47837febc2e421091f64bb3ee624aa006426769cae029a43ad1fd7687f0102589bb8f795663a4cdf651e382a5659b25
-
SSDEEP
12288:C5vfIwpQqVVr3/uqHL4QOnibYa4JICGNsFIOK9/7KB+:+7lTPpr48c7JICGCyb9GB+
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack001/YapiKrediInternetBankaciligi_Dekont_20240531_266_40240020.exe
Files
-
5c340f4ea2c37e9fbde26ec997989653563952b4dcfff6990fb1ab0a5301443b.zip
-
YapiKrediInternetBankaciligi_Dekont_20240531_266_40240020.exe.exe windows:4 windows x64 arch:x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
Sections
.text Size: 20KB - Virtual size: 19KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ