INVOICE[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

INVOICE.exe
Size

956KB
MD5

e16f00abd974a2451ec76395bc1eca30
SHA1

81f0015b3188e0fdc0148238eb195d5826c911fe
SHA256

e74ecf1c2f87e3182e7a6414767b62eeea8a49e1d1b08894fbb50a8cd6243961
SHA512

b0060b1aa5e5a46366413e303d3a65966b25d500e56a95db3c7e47855730d1af3a58bbca0b0ca06ac5c3ef5f1e5dfb38f3515603d0255f5bfbaf8c7489633105
SSDEEP

12288:wRBk76bsaiQY8bbWNiJbfx3NSkJklq9ZRiYd:wRuy3iQlWcJbT7JklqX/d

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
INVOICE.exe

Files

INVOICE.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 953KB - Virtual size: 953KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ