Approved Purchase Order Nr[.]227[.]exe | Triage

Sharing

General

Target

Approved Purchase Order Nr.227.exe
Size

765KB
MD5

563b0fcdde7369186ac38d0b09306aa7
SHA1

df516393eb762506b627b6257b9d83ceb61d80f8
SHA256

d0bcfaba75056d8d1e308e4088122850eea75007f191b5c8d9aac67e8cd0dfe3
SHA512

4baf303d8f2b353a40626ccf80a6b409a2ff162a1e505fcf4ff15a1a7d1a67ca89543f046ff457fdfaa80040242bd4c44172794a31e06a25ab069f859f174a8f
SSDEEP

12288:w7252w6Wl3ZgY3RBxx7a4OQDkAncT9HyWCk7cUxvReS+uhQM:rIDWtZgWRBT7a4O/d1Isbx1h

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Approved Purchase Order Nr.227.exe

Files

Approved Purchase Order Nr.227.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 604KB - Virtual size: 603KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 160KB - Virtual size: 159KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ