Static task
static1
Behavioral task
behavioral1
Sample
PAYMENT.exe
Resource
win7-20240903-en
General
-
Target
f9d4ff7b7962e68fd87afb61c2167118babe134c63fd6760f387bec880bb4f23
-
Size
654KB
-
MD5
da16592a22c527135a175576d1c17cc8
-
SHA1
daf5e14f00a499f9f34f6a85c89018d6ed8bca9d
-
SHA256
f9d4ff7b7962e68fd87afb61c2167118babe134c63fd6760f387bec880bb4f23
-
SHA512
fe35c47c5e4ea7ff08e3c5b5071c61105dab18110a49248778fb5b9eab3cd9a95d6613539e1dc26c328b466f12eb8c404a02c88660bc969e2b9af4a48980b39a
-
SSDEEP
12288:d773h9SXH3J9ZH+uLrXCFABPFTrXoQf8KxIQIB2C1nHyvdSug3bMEA2q/G8RhB:9LvqZDHRrQS4Q0KxIQIYC1HyUugr/Ais
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack001/PAYMENT.exe
Files
-
f9d4ff7b7962e68fd87afb61c2167118babe134c63fd6760f387bec880bb4f23.zip
-
PAYMENT.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 1.1MB - Virtual size: 1.1MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 16KB - Virtual size: 16KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ