Invoice[.]exe | Triage

Sharing

General

Target

Invoice.exe
Size

518KB
MD5

63f7fc248ad2d9cdfec16a9713d1b094
SHA1

ac3cc8f9b05f263bb437ec15e3ef9ca5144eb1c8
SHA256

d5252b71a90d3ef290ff4a760b8cd4ec847feac8d5737eed43728bca34b2068b
SHA512

66a3c7ecfb10bca1a7e4602937844475597c03543be55a31c471a805d96d559c3bed7775424290864158b66cf03706019bf7256499d784a3f9af7173c75bb81f
SSDEEP

12288:0gMXsrU1Rm5/Ba2TeA2ZnAB+wM/ZkVpEzBj/fP5QlH:MiUGTTL2ZABcGVpE1/neH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Invoice.exe

Files

Invoice.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 513KB - Virtual size: 513KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ