PO_801221672[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

PO_801221672.exe
Size

6KB
MD5

df34958a06e62340c68cf68fea6b616f
SHA1

6eacb8e85e89457ec8354037b831ff826514c4ad
SHA256

a115ad0e9656130cb3f9507e9f8a64cb60cfdc86edda7d7ff7cc04e62174b71e
SHA512

fb5d187048f1168887839ab846bda7f8d0aa417aaf440a2dba1445fcd3b7a38e8eaf17b7ead68351c35e12635f5aa46b214603fca510b0849bd5034811f2536e
SSDEEP

96:tRBbQ9I2a90OV2AU/CFuWYsVgU6IRoh02UobFnU:DBbl2a9Zn0WYsiUdof8

Score

N/A

Malware Config

Signatures

Files

PO_801221672.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ