Purchase Order # 4001_1[.]7z | Triage

Sharing

General

Target

Purchase Order # 4001_1.7z
Size

579KB
MD5

2470d083a8caf4e8b145a40e32c1f0af
SHA1

ec7d83c359af752f24ac6dd6d64e94fae1c033c2
SHA256

4b333fb1ab04f3f33c3276f8d9adffbddb86818f205e61202498e4485bd04c70
SHA512

7bd17b8f998d67a962872a4421c8fbc34e60aa36a34a3b7c49f5f8f37e6a28aa1d8ef6551a2341d0f070018b57da75a721a78681a5567a78ddefd533aa0e918f
SSDEEP

12288:s46bQp26m3b9e71E+1E8t3TmD4NECyqBrdi8Ekp3qE0K9:58bb9Q1SyTk4+qniz630g

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Purchase Order # 4001.exe

Files

Purchase Order # 4001_1.7z
.7z
Purchase Order # 4001.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 609KB - Virtual size: 609KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 207KB - Virtual size: 206KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ