Static task
static1
Behavioral task
behavioral1
Sample
Invoice20230811017548CPA.PDF.exe
Resource
win7-20230712-en
General
-
Target
Invoice20230811017548CPA.PDF.exe
-
Size
826KB
-
MD5
e8aede2f0d379d887ac57436cc464537
-
SHA1
b6ef8cba22d7c00a67099e9e2fa0ef6615749d16
-
SHA256
90db10891045ddca4c90ec37c2bf1096d48ce07b69ceaf0845a12c78a40909cd
-
SHA512
2c4ecbe7e12b56bd98c6c1bcf5cad554c23127926b9c2e9c1628f48dc802b11952c3c1dfa0bbd8a87a76becbc999ac70276785e28e156ba614bba56e7e668462
-
SSDEEP
24576:C3hx9pI/mdFiZdud2ycSOzMiOgJj70GDs:SsmdcIOdL0Os
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource Invoice20230811017548CPA.PDF.exe
Files
-
Invoice20230811017548CPA.PDF.exe.exe windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 610KB - Virtual size: 610KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 215KB - Virtual size: 214KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ