Purchase Order[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Purchase Order.zip
Size

509KB
MD5

7b03c63d536acdb20cfd27e2c0636afb
SHA1

d7816bdd0a848d0937af6069acbcc6f7657014d0
SHA256

1fb2e4e7cb2160416992cf69d35b48f65353824b6bd2a32fe7462f81505a60cd
SHA512

c41c7f8c1e7f9d2aece34979f0f95483bb557afd26497dd77ac8d28cad6b95d1ee7bbe9ab12a2efeb21a297d4a57063241663b8baccaa2fa3b84397ed8a2fd99
SSDEEP

12288:iGNG/Uqp8/6oUIaSUB8x9Wpyi9C83KjWJmQYOL07aj:lG/Uqp8CoO8bbiAeFL07aj

Score

1^/10

Malware Config

Signatures

Files

Purchase Order.zip
.zip
New Order 2.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 542KB - Virtual size: 542KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ