Invoice 005780013[.]r15 | Triage

Sharing

General

Target

Invoice 005780013.r15
Size

263KB
MD5

775abdffe0c10754f96e4429a125672d
SHA1

34a5288c6d7602b70bfaa4d7fc65262a8519f399
SHA256

d5fd934a84ba92016068ae11f3694eb8722ab14e83f7dd0de76f2fb5d87b8421
SHA512

91353f3d860812ed2c5ddad1165625d8d3b08990fc72c71977a434a17be42f2c6e7f7ce76f07472f64109896088a3f25f39b5675724c0e10097a70db61bad453
SSDEEP

6144:Auk5u9Pfhwx0jdvCIDTVA1vPOIX/fWC4i87kRxD9y6xn0z7:Al5u9PfhwK5vCcTVMvPrPfWCh876Z9VS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Invoice 005780013.exe

Files

Invoice 005780013.r15
.rar
Invoice 005780013.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 762KB - Virtual size: 761KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ