97d50f2f4b0cc96385e36d71fbbd2c7d55c23ba3a74495a347ac582ffff8c2ab | Triage

Sharing

General

Target

97d50f2f4b0cc96385e36d71fbbd2c7d55c23ba3a74495a347ac582ffff8c2ab
Size

560KB
MD5

ab60959738daef042b5f5f614fa48895
SHA1

f4b67e3e708ae41343ec58f4aa71d7bc648c3865
SHA256

97d50f2f4b0cc96385e36d71fbbd2c7d55c23ba3a74495a347ac582ffff8c2ab
SHA512

338ee268061eab62197d60061a0260e922407f8bb90b4fe4973cbe1a973e66b9e58cd4c3285a7a755ec397468429e674fce0e447a29233492744e9207447ac8b
SSDEEP

12288:IYMQ4WaUVM69FoCuCsTPqXiQd1mSOxd93aabkZJ4UQGwo3SC:IAZVn2LPTgbmDh57sx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/PAYMENT.exe

Files

97d50f2f4b0cc96385e36d71fbbd2c7d55c23ba3a74495a347ac582ffff8c2ab
.zip
PAYMENT.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 734KB - Virtual size: 734KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ