PO #21655789[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

PO #21655789.zip
Size

552KB
MD5

dd1aa6ef2fc03847eb5725dae4be3ac7
SHA1

d3996aa8d6a9337c0e3043a9925b4950577d65a6
SHA256

d923be0adc1e86a24f5be4dbbc33b3af6690e1ccd6aca6790bc24b6fef6bedbf
SHA512

227ddaf2b4a48cd12f8bf2295adb5a096bec8184354c9fe6d8c28935aaeafc5c1591b541ee6192c7e5587038ebc2f644a2f0b8c0beb7137c2af2a0f05a9f7efb
SSDEEP

12288:KEW7ury9QQwlkeOPpAuuuPB08xYYY7oaqTCJCcVmZPLZ5:SaQwlCRAuuuPBdxlY7o/EFW

Score

N/A

Malware Config

Signatures

Files

PO #21655789.zip
.zip
PO #21655789.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 942KB - Virtual size: 942KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 59KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ