ClientOrderManage[.]exe | Triage

Sharing

General

Target

ClientOrderManage.exe
Size

6.4MB
MD5

2a59c928a9301612021dec9bfcd0bb4c
SHA1

6985af8326ed13ea8a51eb2bdf79f4be44c2dc97
SHA256

40f67dc6edf505d96f24f5a612eb9c976fe9d0c659226f8cb0f2ecabd95ee79a
SHA512

9d1bd7f5e7fc72d103bd1665a1585b7536217e9633d2a4b8951c5d2ebc6f8236c129c701e4faaca1c77bffeadd2e32709c8eb74043dd75d360255ec322742bba
SSDEEP

98304:GyRok44lRVKqp8SAaBdVEajZhADYj+hlp2JbCxVKuVVIh:GG4rqpDFuykki2ZaF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ClientOrderManage.exe

Files

ClientOrderManage.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 3.7MB - Virtual size: 3.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 952B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ