Resubmissions
28-06-2023 04:06
230628-epln3shc2z 3Static task
static1
General
-
Target
Order P20230620-N_pdf.exe
-
Size
174KB
-
MD5
4f91de23766ebb0e8ff8822fa39850a5
-
SHA1
fe6b799d70a62127aa42b298dbb6e3b19099b5f3
-
SHA256
313be8b011f59412f49ca1dc09c4896254d499e3fc2b10cffc81a072103ace85
-
SHA512
588b70e8a0ee18eebdd10470b3be4c52f486a2946e8a271057a17c595e5a25cb468bb83293d410862c68e2d223d07cdbdf575cc5d2e1d01c32ec5487e5759667
-
SSDEEP
3072:1a3NJR8d8ZqxL7VLXdgf+KhhO2N9lasqQYqXjhE+EXg7LtZyt4:yJR8dFVKhhOq3aKh0eBN
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource Order P20230620-N_pdf.exe
Files
-
Order P20230620-N_pdf.exe.exe windows x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Sections
.text Size: 171KB - Virtual size: 171KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ