Static task
static1
General
-
Target
Purchase orders Lists & LPO Samples #00070502023 XLs.lzh
-
Size
1.3MB
-
MD5
19e5cb7cf8888dd02f4f70ee4130823d
-
SHA1
b8a5c3751f92f451c19d3807840e1e362211074e
-
SHA256
54bcbb7f26f1828f8704813b272c2c414edc3a958a35d1da4ca67bd2bb4ddfb3
-
SHA512
1291ccd93cca69eef75df7814de37a6f7a410bf25139b40ab20d88fada237fa4da3c8f4afaafaceca607e259bab1e0cc10156a1120aa83acc2b04db695184ff6
-
SSDEEP
24576:3Nk6dJbWXo3Fbc+WCELoZCSgwzuJ6S+EQZiyA6WB8ko8+B7w:Lmo3RaLoUSgwZSQ6/8k+B7w
Malware Config
Signatures
-
Unsigned PE 2 IoCs
Checks for missing Authenticode signature.
resource unpack001/LPO Order Lists XLs.exe unpack001/Samples Of All Order XLs.exe
Files
-
Purchase orders Lists & LPO Samples #00070502023 XLs.lzh.lzh
-
LPO Order Lists XLs.exe.exe windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 606KB - Virtual size: 606KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 289KB - Virtual size: 289KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Samples Of All Order XLs.exe.exe windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 941KB - Virtual size: 940KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 289KB - Virtual size: 289KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ