Please Confirm Proforma Invoice Details[.]pdf[.]rar | Triage

Sharing

General

Target

Please Confirm Proforma Invoice Details.pdf.rar
Size

553KB
MD5

495a4b14dfbd0fc51362aa2b3be49e18
SHA1

d790be2724ce543b9472bcf39542acab38ac43d1
SHA256

72004f9e1265a003c3d1d06654f22d7dd2b7301e5abb325c384d0cb97a07650a
SHA512

57550a77b434e4712b1a7867585a04e7b481207461404b44db565ffe59c5c27f487f79e0731c600bd84897aa4014e40cd9b56e9a89ea941dd89cf7d0507ce331
SSDEEP

12288:YM7AuGDK25d4zGTkweEk/H0lXo+lSQ7BGsxJshc5Ia6rMOuIf6:B79gd4qgsW+lS0BTehc5QOF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Please Confirm Proforma Invoice Details.pdf.exe

Files

Please Confirm Proforma Invoice Details.pdf.rar
.rar
Please Confirm Proforma Invoice Details.pdf.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 621KB - Virtual size: 621KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ