PO_PG1476_ALKHORAYEF[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

PO_PG1476_ALKHORAYEF.exe
Size

712KB
MD5

fa1cd83d40ce710cae4817fa00e0ff74
SHA1

93aa020af42d217b2b0d744c38a580c1ccded840
SHA256

0bcb71730bded23e0c39abec518b5f5badb11c42ee89915e6bb6b57f681e8eeb
SHA512

599d85a6d34c64810b2522aab5362e1a97989a1e1d2ef6706bddac8638727f341816326d437b1698044c0bac6e6d118a9c91fe87a4e35fdce8ce3998d93f4110
SSDEEP

12288:5C0BouHH1J+0M1FFBlNibFNgvP5qj226CsBXu7lV+PwadQ:5Yu1k1rCFNg38j2ngrad

Score

N/A

Malware Config

Signatures

Files

PO_PG1476_ALKHORAYEF.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 521KB - Virtual size: 520KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 190KB - Virtual size: 190KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ