PROFORMA FATURA INV24293782[.]PDF[.]R24[.]iso | Triage

Sharing

General

Target

PROFORMA FATURA INV24293782.PDF.R24.iso
Size

1.2MB
MD5

02ad54a5dfea93f8b67f6817be020b16
SHA1

323766dc4fcf18493d372f63d2fa6296ffcab297
SHA256

1ff810ff1e59e30b354fdfcba11476865afd7df89fa12e3964c3a329c35d3343
SHA512

2ac0cb3434d98f2c3201d045078fd60aa5b7b1809b3740aece3c68e33f9df69d1f0a528b8e6c4f2929c8dfe35ef80b6d16e451f617f1a075ae552acd68d1587b
SSDEEP

12288:PLBsUHAeKHYJNeJXKDdZeTvOxzP3W1pgkmiVv:PuyA3HwUXKDSrIzPtkxVv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/PROFORMA.EXE

Files

PROFORMA FATURA INV24293782.PDF.R24.iso
.iso
PROFORMA.EXE
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 483KB - Virtual size: 483KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 948B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ