ff62570c2846b69d9536b3679bd3df67e013f10157e7a9e89d27b8a2c0c4a9df | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ff62570c2846b69d9536b3679bd3df67e013f10157e7a9e89d27b8a2c0c4a9df
Size

637KB
MD5

2576844d37313547fef32462ad0cb0c2
SHA1

f7cc3de78120fa225412c480722db5cd026e67cb
SHA256

ff62570c2846b69d9536b3679bd3df67e013f10157e7a9e89d27b8a2c0c4a9df
SHA512

e427fd5041a9c081c590ae91b643c5346a6dedd502c7bd7fd2d96c6f460ce96f03b56c46d8ef19a5d36671d53cff4da978144e78a1f5ec4a12a100fa60c924d4
SSDEEP

12288:tFD73dxLuvxw2j2BcQKwBlPOjiMjgmapvtOAHtgQHIJNn1K4:tFD73bLz2j26QKwBpqigytOmter1K4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/INVOICESGS24 _ SWIFT COPY.exe

Files

ff62570c2846b69d9536b3679bd3df67e013f10157e7a9e89d27b8a2c0c4a9df
.zip
INVOICESGS24 _ SWIFT COPY.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

BjSK.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 683KB - Virtual size: 683KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ