PURCHASE ORDER[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

PURCHASE ORDER.zip
Size

14KB
MD5

eda76c1943ef9a85f6bc751a1da8c71c
SHA1

a9ccfcb206b6aaf58aa7fc0e0fdb782f16d5c14b
SHA256

7ab40b2c2064c64ab89d8115c8e4340ee17c149a3262f51583b90838651a9f2f
SHA512

caa049c3588f2b9cfd1bae9cdb651665aba87615dda9b79d51ee1be9d40daa36d128c1bce6f076fbf7e8474c9116a253c42c181282d1774ba36e854b8132cc84
SSDEEP

384:ZTPtNthiBMqXUQcSgcNFOrXa40gZvu/C2K+JJU9j/AZ2Rs:Z5yMqXncpyShZvuquZ2Rs

Score

1^/10

Malware Config

Signatures

Files

PURCHASE ORDER.zip
.zip
PURCHASE ORDER.exe
.exe windows x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ