srpX.pdb
Static task
static1
Behavioral task
behavioral1
Sample
payment.exe
Resource
win10v2004-20250502-en
General
-
Target
payment.exe
-
Size
558KB
-
MD5
17a2a22d9bd1b12b03fa55ebb307c862
-
SHA1
11a57e4e8a9549547dcb3528752d46a6b8579260
-
SHA256
ed99bc8b8fe39945058527720e8cbc838e305706ad4598bc5ce7aaddf3572f46
-
SHA512
17b6716f9b1c0510b6885bb67a37440ddbdaee2a18c2929be51df8b4b2d6116d63e2e9a153c7dae9ccfad4038cf18d81576ded9c7bb4023e91653e0113a5a469
-
SSDEEP
12288:n8NkzQgGQxVEyzqa6JeXYu0U4A6kXAJGCVjbr:AkzQgGYyyzqJeou/4AIHVjb
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource payment.exe
Files
-
payment.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 555KB - Virtual size: 555KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ