Purchase Order 5501097310[.]exe | Triage

Sharing

General

Target

Purchase Order 5501097310.exe
Size

656KB
MD5

475166f8b8419d60b0054d7b7332d75b
SHA1

a01993bc25df682700e3ca535ddc13362b509257
SHA256

b08291dfdb766139150a65ebf9e895dea34436f76123a52116e0d03944e1a4e9
SHA512

60df8bd78d89e3df7b6cd679ae4a5097f5a22115de1d3d67c119130db2cb2cc8b24edd77c299dadda5b7212e71f1a94f45d0f6dfbf3732aecf4aeba19d235534
SSDEEP

12288:+WN0WPAIJU1eadlq3Jks5oWJTlUpU5VbHxz4egQVt:+EIIJU1RSZksOGRYsxHxz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Purchase Order 5501097310.exe

Files

Purchase Order 5501097310.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 654KB - Virtual size: 653KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ