PURCHASE ORDER[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

PURCHASE ORDER.exe
Size

980KB
MD5

e40e8ff238b70f45bdf02fce8e5a8e35
SHA1

870247a4371c67a0dd41f89e755be28204c41eca
SHA256

6f35b489ab7913d10901fc99d631d5aa310df2c1a24c67e89d9933b5ea603d98
SHA512

d4702d90924fcc50a01778c1e927cb238f4e4923e8103fa0e815245e3c9205bfb575efbdbe977a267597e4bb701ae94c280b77156ceecb2dcb964c92149dba10
SSDEEP

24576:Z+xOZRahdu3GIXcNu7qCJd/YScCjKwPDL:kIMd/IsNu7NPcEb/

Score

1^/10

Malware Config

Signatures

Files

PURCHASE ORDER.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 977KB - Virtual size: 977KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ