rBillofLading05-25-2023[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

rBillofLading05-25-2023.exe
Size

91KB
MD5

7d310b60e4d718586a4ab5204bb5d911
SHA1

8491f726cb1eb0d56d0d56f8c93e563420cebd8f
SHA256

bacce527c834b5fd91baa48334910a8e050d7d2860425909834dae789a3bb183
SHA512

1eac38c853bbef79488f581b3990fe86313ed5692bc35c05c30ccda38fc39d5e1d90aaaaea65e8bdb3ca1a2d5770a2d9e498bbcb97900467a75fb114a2e177a5
SSDEEP

768:Uc9Sqbc1z+naQ2yzLMCXiDgiCRjZ55ZySYmFYTGtKOgm8Jr+XXdPQYF9bWToVcOy:tSqAmXiDgvYmuTCzWrQnJthYh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
rBillofLading05-25-2023.exe

Files

rBillofLading05-25-2023.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ