Purchase Order[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Purchase Order.exe
Size

1.4MB
MD5

196ea9c9b65880978d9a087b578d3219
SHA1

e7c20cf1cb49c948dd29bc02613958a249e349b2
SHA256

f91550582e9e831cba0a8ee62a9a47b3f9a4f1f24e228353d6f5050bc1b52509
SHA512

7c22aeb23f18da12b41cefc82c80e8b12e60279f14f483800cf4e4a13b2f08fdca6ddb394131390285062f58351b7fd0c9905d43d088ffea64a7bac7ab86cea5
SSDEEP

24576:B1OdE7222Bng3pk8C98Vfmx7mqArDATW/IfKbray5+mdcBLX9aGL:BMO72VBg3p/hVf0CqgCWARy5+sWX

Score

1^/10

Malware Config

Signatures

Files

Purchase Order.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ