New_order_RI3P30-10-20220000000000000129KB[.]cab | Triage

Sharing

Copy URL Twitter E-mail

General

Target

New_order_RI3P30-10-20220000000000000129KB.cab
Size

369KB
MD5

3849fc0ee055d2f2f69e0f2adf8e39e6
SHA1

c0a7a14d02c0ce5c9729bfcfe7dd43e856b457da
SHA256

c6cf4fee33c188b7320906bea9c9c0a85d7750d11d40b377123ac24c702ba929
SHA512

7253991ddbd03f670272e7d4994a38abc47eeaa036c2f806fbe91086267e3538f96e7af073a43b025c94a663f7d88069af2d3f330fe884a327f19f2f8fd9963a
SSDEEP

6144:fVaaMbsQzwZZhSYBV6q3Xoe4Sb93J2r10P0e8guiiKLhs6s1udAlmPASYe18+s8i:NDMbsQMZzSYDPoVE22PF8gWKqJoe8rtc

Score

N/A

Malware Config

Signatures

Files

New_order_RI3P30-10-20220000000000000129KB.cab
.cab
New_order RI3P30-10-20220000000000000(129KB).exe
.exe windows x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 446KB - Virtual size: 446KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ