Purchase Order List Pdf[.]exe | Triage

Sharing

General

Target

Purchase Order List Pdf.exe
Size

744KB
MD5

ae6c61186f442fcfe791801d50375add
SHA1

1d04bee70997b3d3eb08d4b8c3a2efe6238c79df
SHA256

f3c00fb75da49f73a9945b562d748ff1b6958e3bfdbb1e833d6a16ef4d063092
SHA512

f7f5701d2cce74e93d0357d18bd7e109c73268e6c3bbbda9225d86d90f1c3abb712889ddaf61cb77fd441ff24a17fdd89b6c8cf1e7691935ed529053e82059de
SSDEEP

12288:5uu3as/16/YHmM9mARLAV+/3e+vcGD89J31rcs01kFps9XabXMTyJPa+sQmN3:5Ks6cV9mA9ImJD8z31r01q8ToPqQy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Purchase Order List Pdf.exe

Files

Purchase Order List Pdf.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 733KB - Virtual size: 733KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ