Bestellung_(PO4703392)_doc[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Bestellung_(PO4703392)_doc.exe
Size

440KB
MD5

dc1a0e96e6fbd074ce9e7fce4fea4aa7
SHA1

e662fd59a762e0417d65731806dc3454f6c8f13c
SHA256

1cdb6737f8c9bd9e1631e59e2fd023c3863497bd8ce912b6d3abfb8ba6376be3
SHA512

74c3045470c0778caedca267c8c2d6553a1cd424bf97a3a9e4d188f649a6a460e9629b03bc9124d0589f1e55b5aa3d325fc04dd7fe79fc26bd0a078205311670
SSDEEP

6144:2szno/RDE6QYXUCxzK0b99RtteJa3NZX:BoJDJQYXZzProkdZ

Score

1^/10

Malware Config

Signatures

Files

Bestellung_(PO4703392)_doc.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 272KB - Virtual size: 272KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 166KB - Virtual size: 166KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ