purchase order[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

purchase order.exe
Size

248KB
MD5

3c2684fc62c027606d82170dde9c59b0
SHA1

0728b8ce2e18df8349a9b130fe8d54c66dfb00f4
SHA256

b0d761b3321af08e18733bf143c08ad4109a4894eca3d407020f6b319d36b8ef
SHA512

1148d65402675807b5d155fdf723ce909578eafc8eb57be1a4366584316e185ac7c7f60569e09345824faf8c9fc68891d38c017a2fe90ec97e15af8916021abe
SSDEEP

6144:+zFuFDutOc6duxKLolVYAaQsQgMX0+kkLK3W3l+7xOMfoCDySn:oAFDutOc6duxKLobYAaQ8MekSW32A

Score

1^/10

Malware Config

Signatures

Files

purchase order.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 245KB - Virtual size: 245KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ