PURCHASE ORDERS[.]pdf[.]exe | Triage

Resubmissions

22/03/2023, 17:01

230322-vjwj4aca7w 5

22/03/2023, 16:28

230322-tyvexabh4v 5

08/03/2023, 07:54

230308-jrj1gseg34 7

Sharing

Copy URL Twitter E-mail

General

Target

PURCHASE ORDERS.pdf.exe
Size

1.6MB
MD5

7900efd5f98edd9dbf42b2c9a17594c8
SHA1

b269ef2b72ca0953d69a463e8c9cb44669b8acac
SHA256

57cff3a25d0e209ae16b6c411c95be97880fdf3075d2b33b32a20dda8d611d5f
SHA512

37950072993ab3d67acc14132523c6659785707206bbf3226b37d58102fd36e8466a5cc213e06786e46e2e0a749b665eb2453150b4f8ad0d730c327ed1c05bfa
SSDEEP

49152:am9bhKXZshdT4sa00eCGhx1VhhtbRIKzNH:aVpszTq0jCix1VhTWK

Score

1^/10

Malware Config

Signatures

Files

PURCHASE ORDERS.pdf.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ