General

  • Target

    Payment Confirmation.exe

  • Size

    422KB

  • MD5

    6cdf0e571ca8d470bd5b40fbf99615b3

  • SHA1

    552ee3a5ef4a9c1afb59c39f1fb99ad682db9191

  • SHA256

    efbf7accf5b133eb834d6e906d9521a25ec21bdd891747b14c8df262f4744294

  • SHA512

    ee69a992eab7c205f2ff43bcabf88d331b5e9e43454273b24504c02db800d5242689bf0bc7239b0c74245d0bf0412f4dbc1dc8c352505209b0c11ae06c94a40f

  • SSDEEP

    6144:bB+pgU++jHKPiccaS5Y3BoKkTO2Ei2iiYsJEluUoyAvkJv5u2PYTgVa+BeEyaJ3f:bgoBov2bYsLyAvijyweeJ3PEkkE

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • Payment Confirmation.exe
    .exe windows:4 windows x86 arch:x86

    4ea4df5d94204fc550be1874e1b77ea7


    Headers

    Imports

    Sections

  • Amagergarn/Panisic/sharkskin.kul
  • Amagergarn/Panisic/successional.for
  • Amagergarn/Spiltovet.poi
  • Amagergarn/afprikker.air
  • Amagergarn/belavendes.esk
  • Amagergarn/dividerende.way
  • Amagergarn/pedimental.txt
  • Amagergarn/porkers.inv
  • Universitetslektorers/Subconsciouses.Fab