BENEFICIARY PAYMENT ADVICE[.]zip | Triage

Sharing

General

Target

BENEFICIARY PAYMENT ADVICE.zip
Size

532KB
MD5

320619d661b535a2c10490641ef71230
SHA1

ac0b30733f82dc68dcf92ab228d7fda4c979cddc
SHA256

240d8b8f9fcc0b76a48f75dc6668fd0898aa56f6c64c08730137bfbf51e4fa16
SHA512

40703554a1b42fb18b27fe81306579df0f9c58071ae0e09bb178d280dba0d2e7ff4097e0c649553ae27cb9171e5dbf99db53ea2b11b49bfb2a430dc08933393f
SSDEEP

12288:qnuYosM7wsPlI6DJUAaNbOu1Q8c009vTOkYb+aD:Qaf1haZOu1C9vTOH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/BENEFICIARY PAYMENT ADVICE.exe

Files

BENEFICIARY PAYMENT ADVICE.zip
.zip
BENEFICIARY PAYMENT ADVICE.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

GQxi.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 565KB - Virtual size: 564KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ