PO4054885549[.]pif[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

PO4054885549.pif.exe
Size

736KB
MD5

8a83a600245dce233f3a48799523bdf0
SHA1

735bbdfd224dd1e7e5a68bb83ebd6fe89d1a3271
SHA256

9a61150946733ec5e333e9c05821a654bd440fb8ea2b85060b3e34f97f0d25bd
SHA512

36c57e3f5b32bd597971ddb7ed4325931ccb3ffc9101e0fc78f8f1df2f5a53296eb7374746302d3faa18e7f0b4eaa310a18c23cf87698a6ead76894c8f5d35a2
SSDEEP

12288:3osoa3LGC12oaSIKPuJdUQfY+xjj7+/0OhhxqOWxrXtjaYDtzBYCoxCBGNazwhFn:d0oRIKfgY42MBtkCBLMhFjqW

Score

N/A

Malware Config

Signatures

Files

PO4054885549.pif.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 730KB - Virtual size: 730KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ