Faturas pagaspdf[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Faturas pagaspdf.exe
Size

494KB
MD5

85eadd379714196df5b223c64110c799
SHA1

cb4c7535da5bcfc2a59c9a173602421b8b38957c
SHA256

c7a7cf228d04cae217e689217f6a810f560a3033773e38fef04d9e483c6ce902
SHA512

a6c79091b6059786499133a8cd11958034603ea11854890fe00bfc396b139050c3cccceb40106031e1bc1311578e0d9be40051b5fcec33188fe8a3476c1f427b
SSDEEP

12288:GJAwhh2Y4YB8+i1izKoy6j+sBrz4LvBxvQOuRJ:Bwhh2K8HanE9lQjr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Faturas pagaspdf.exe

Files

Faturas pagaspdf.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 491KB - Virtual size: 491KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ