PO--080523-FM 0655[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

PO--080523-FM 0655.exe
Size

623KB
MD5

cd80b359e4458ab72c37486ea0e88022
SHA1

d385f84a3f21c3ce4b6f42f34a4c13cae645ff09
SHA256

f14adf8284d2d04072445b5744da50141332a86ec1f28fd7ca6e316b1a7e0b24
SHA512

60babaf75bef6889ec0f770ce88ca79060699a7f40628f6a3c4a49d602a40419a12c099dfb972f01beea901a35b5be790ba24386e7480843dd8c60d14c2533c7
SSDEEP

12288:fl0Dl+C42xjWwzzJ/OQadSpPCYOBPZVD9nVORVJ2LJvSraXY:qpzYQ/AiJ2MraX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
PO--080523-FM 0655.exe

Files

PO--080523-FM 0655.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 617KB - Virtual size: 617KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ