PO# SYF20069, BL & Parking List[.]PDF[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

PO# SYF20069, BL & Parking List.PDF.exe
Size

322KB
MD5

27ec420901db24c74e60a02db7ab87e4
SHA1

79bbaa99f2aa36bfca13f4a7c30366ae3416b99e
SHA256

6e4ce88bf2227d76d001680a3b7294a0860a2d067fd7fce10f83bb33dc46200c
SHA512

def799222acb3bb55f7a0a410ef0d5d06b3f8adde2467eb4b971e6199e889adc234eb81be68baaa4c19f06589ded81581e39ca7117a7f4584da8d03fa524c3a7
SSDEEP

6144:D1HQx2fNJLhOXo5AHtyKDhPaaOVuzv/qJ3:RHQx2fb5AHtyEhPaaNqJ3

Score

1^/10

Malware Config

Signatures

Files

PO# SYF20069, BL & Parking List.PDF.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 320KB - Virtual size: 319KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ