PO#266203[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

PO#266203.zip
Size

512KB
MD5

0545de11c6e67c8b6f5c967db17f631a
SHA1

d9b822c0969732ca54ff27ac5f587f9057d4369b
SHA256

32540c8d3561a5683e3fcaa4fbbc87e19e16106534eaaf6649ce48934eb602ed
SHA512

adcde6b9185d191c1305a127cfbe93a4d401fa060757fd5f03f20fdc0b1abc57e0b35fcb5fa52be65e14c0d9ea8df632fd0f4cbd03303f9cf9cce8d91318d94f
SSDEEP

12288:iPaG7QFdSu5p/JeIVytD/gbyOgjJhZbW2:iPJ7Q2uVotsrgjJa2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/PO#266203.exe

Files

PO#266203.zip
.zip
PO#266203.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 639KB - Virtual size: 639KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ