b508dc90e749817c946f13875b5d77e7042cd7adac9eb61ef8740422d7b03002 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b508dc90e749817c946f13875b5d77e7042cd7adac9eb61ef8740422d7b03002
Size

227KB
MD5

b0b970bd65d86152549ba2b1aa36113a
SHA1

6f81f9819e3631a917e0c25556b1800a15d27029
SHA256

b508dc90e749817c946f13875b5d77e7042cd7adac9eb61ef8740422d7b03002
SHA512

368b90d05d3650ee1b3b32b2ee9ba552ce3515f6479f91c3de2fff86d87ca31db7e8f74534b7002a184f55eabb266af722a001301b7fd521d4c2b4345e4540d5
SSDEEP

6144:XrhwOcmtKz6mAvrpNy2RVBEwllbspxb41cEqdgkU9G7N6Jk:Xmz69RVGUlbsXU1LqU9GR6Jk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Revised Invoice No_8562023.exe

Files

b508dc90e749817c946f13875b5d77e7042cd7adac9eb61ef8740422d7b03002
.zip
Revised Invoice No_8562023.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 350KB - Virtual size: 350KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ