Purchase Order 251pdf[.]exe | Triage

Resubmissions

10/05/2023, 01:21

230510-bq65mafe9x 7

10/05/2023, 01:18

230510-bnz9asfe7z 7

Sharing

Copy URL Twitter E-mail

General

Target

Purchase Order 251pdf.exe
Size

1.4MB
MD5

f5a5951aba0a206c9b370a375f95cb02
SHA1

46ec05cef25ea090b87c383977ed399047c6ec89
SHA256

53f31bf8011613bead4f530d63b146825f5156a990ea6e486627f98db9a7f0c8
SHA512

182ba982cead9a028721900299d96743760c0b17f6cd3002a32f46d3299fc48448261bbad0a1630c3fe0acc545b01e5ad806d57f5fc9d4f481026b767223e45e
SSDEEP

24576:PQB6M6ySnlXl5xpN/jiaHi5dhDzJuMM4ZzgMHe0MFSg8qrizlyZ5mA7F:O6MOfRZUcoMczju

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Purchase Order 251pdf.exe

Files

Purchase Order 251pdf.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ