PO 73TY4T23G46[.]xlsx[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

PO 73TY4T23G46.xlsx.exe
Size

577KB
MD5

8227168c68fdf030ba2b39fce07228c5
SHA1

cd485490df7d2fdc3a66d5c0746568924a3cded0
SHA256

560b81b3d1a32b87866411076696f07732fedfdfcce590cfd101add2844985f6
SHA512

28143a50f73b0ffe0819635233a16b4a18a0419094607ca0b281a67ba50ca17f7b9e0bfd7cd0f3dd9f36a381057c7b82aec75fc3a1229f2581d6535c051e67a6
SSDEEP

12288:N23L7BjqNvbHyn6Cjn6jj+bj+bw000SrLAntKNRBjl:oljqxH+6jjkR0pGEsNf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
PO 73TY4T23G46.xlsx.exe

Files

PO 73TY4T23G46.xlsx.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 569KB - Virtual size: 568KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ