Inveho_Order List00108021023[.]xz | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Inveho_Order List00108021023.xz
Size

541KB
MD5

c4fbbfe877e4e8a7de5d822d10e40c6f
SHA1

37eafa4fd48b19e46e40cdbd7483c2e02a978482
SHA256

9434f37d9e5411080fb88548dcbc48c58192ac1f780e528d9163a0af8b82f36e
SHA512

d9adfca5bd5cd0dfc0ce3f59fb5342e33ca55b23af652307c4e5fc34b5747a10871df3b832d22dd49ec97cd5af488659e6ff2bfe5e185ac83ebde2a4fabe4f18
SSDEEP

12288:W35/Hpv23U0ve+74IeKNIqVk0zwXZ2xp5pmkJygL3Tw+/PDtCaxx3tV5MCUq:W31Hpv25eIFDkFKpmkMgLTw+PDZxyq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Inveho_Order List00108021023.bat

Files

Inveho_Order List00108021023.xz
.rar
Inveho_Order List00108021023.bat
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 381KB - Virtual size: 381KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 555KB - Virtual size: 555KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 53KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ