PO202305[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

PO202305.exe
Size

895KB
MD5

2df356f15f9e13cc8ebb0eda3f9e73aa
SHA1

375ad0006d92d7373bd3d00e5a300ca4fd173998
SHA256

1148d4c103198f09735c2882ae5eb20e4fec6b5aa0b51c8fb83cfaf3a2b52875
SHA512

4d34fde46cc9e7c4a663c4ed890086c83023359de9e432e17f92a9f0c5b4585ffebb4db1f6abba3ce0f77655838ec36e071f7c1bca551b87fcb34d1bf0b15a5b
SSDEEP

12288:Oldiuj8Q1TlMmHgwXVcAEXK/tSZmoBaeYXJwxHFlswTSy:MBj8QZlhjVlEXKFSZ3BaeY5mFlTTS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
PO202305.exe

Files

PO202305.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 604KB - Virtual size: 603KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 290KB - Virtual size: 290KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ