b9bd69ab014678f22e1f3a60b22d377539a03f4f3ce6435cec44c0b23080dc2a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b9bd69ab014678f22e1f3a60b22d377539a03f4f3ce6435cec44c0b23080dc2a
Size

552KB
MD5

91adb88af1b20c4497d438d8cd0b274b
SHA1

d17aae0385544ac6ef0e3decf8e93307d6d21122
SHA256

b9bd69ab014678f22e1f3a60b22d377539a03f4f3ce6435cec44c0b23080dc2a
SHA512

8e442e626a0fe70529d167a178fada16d55c5140ae5144e45dd7cda9d898715ef495ba8c1ed9352137f6445d79b2f0d5b9382689db1d61806a87f50643c2b172
SSDEEP

12288:VfdFwepxuGOoqX7fMikkAR6coIndQZ98bzj7zQBC:modeXbMhR6cHdQ78brMBC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Invoice.exe

Files

b9bd69ab014678f22e1f3a60b22d377539a03f4f3ce6435cec44c0b23080dc2a
.rar
Invoice.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 607KB - Virtual size: 606KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 112KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ