PDM[.]exe | Triage

Resubmissions

13/03/2023, 19:07

230313-xs6grsbf82 3

13/03/2023, 18:57

230313-xl1myabf58 3

Sharing

Copy URL Twitter E-mail

General

Target

PDM.exe
Size

4.1MB
MD5

51a14d23e03a0d94fe312e576899a36d
SHA1

2f8cf5e083367c9bc0d3c053cfd0127b89a374ac
SHA256

7bf27a063b3f459c923005b7f1a3046e6b3ab84190fb9bf00937275c8cac4c52
SHA512

cb896ab1a222e9fed9c231dfe5fbaf6a8096510984d6abc9a0cd527eaafead6b3c928f1336e5f15c2f82e6670f9ca8c6f2e62c1dbef2f42ac89ccb1df1472d52
SSDEEP

98304:s5lUyoW74LvZ+Kfh3d78p927Wy1gZMcEAYHazGlz5+ycw:MYWa

Score

1^/10

Malware Config

Signatures

Files

PDM.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 4.1MB - Virtual size: 4.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ