85dc2e86d45009cdf83347fbc29568cf6e76841801fc9170caad91f48eba62d0[.]xz | Triage

Sharing

General

Target

85dc2e86d45009cdf83347fbc29568cf6e76841801fc9170caad91f48eba62d0.xz
Size

272KB
MD5

6ab46717059743180b06d54e7ff8677f
SHA1

cf13d2a5d53e83c3b138661d3fc276611b785172
SHA256

85dc2e86d45009cdf83347fbc29568cf6e76841801fc9170caad91f48eba62d0
SHA512

f161f24c242f5709d225c15d0096fa0568692842e989c5726bd90c2801f28465c02c6bebf55020a649f4fe05cec01a8048994417fd1aeb2a3e19629e9bfcb62d
SSDEEP

6144:1CeMd7JJn+pfY3xouv/MbMiW0DcQx7hsHA2BNUDPpo+eiBB9r8UNZ1af85N:MeGP+pfYhouv/QDcQxVR2/Uto+Hs+Cf2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/Payment-Slip#RefNZ84092748498293.exe

Files

85dc2e86d45009cdf83347fbc29568cf6e76841801fc9170caad91f48eba62d0.xz
.xz
85dc2e86d45009cdf83347fbc29568cf6e76841801fc9170caad91f48eba62d0
.tar
Payment-Slip#RefNZ84092748498293.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 366KB - Virtual size: 366KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ