PO-00112023062700[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

PO-00112023062700.exe
Size

723KB
MD5

ae28b312c230ea3ff133b38112c4ae69
SHA1

4e645140da0bf90b5c51dcd67f0e47ff6ac63ed5
SHA256

cdc434fbaf1145d8466253e998cc37a5d8d8fe9f52839115ab69641a22d801ce
SHA512

aafe4dabfe29123377b14eeff5a925aae1ed777da142021a8afb0baa172388c19536a5b001779471bdb82382c48c49e9e22229f638d208b2e604ea825805fea3
SSDEEP

12288:DfxWokc+Hgbd2baJXSMCqu+8oDcJOH+bakjnvPJjjm1/Vc:zxjkcrSou8IWc3xW1/m

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
PO-00112023062700.exe

Files

PO-00112023062700.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 515KB - Virtual size: 515KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 206KB - Virtual size: 206KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ