Request for Product Lists,pdf[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Request for Product Lists,pdf.exe
Size

596KB
MD5

8e9321ddd6b9abf9b92e0d2ec6db1918
SHA1

d9b91b1fc0d078364feb17470ebf5975e64a3a73
SHA256

bb9892ff838c2e6a7a2740122a6518b9d60da413638e7e102fa9729d1d9df7cb
SHA512

79ce0f686d2d8d2c41e762b5ebf476b6fdac40becf21607c3b6be06667aef9126fbf94bef070cd43cebf868efe41fba507f2b6709e5e28a07956fbb77b6d4dcb
SSDEEP

12288:qqloa0ObBSFIftXqx47gdxsEKwBMXglabLJXElMZk9LcMzS7LpKG1RJ7V:qqrbBSF4Q47gdIAMwlabLJXe6k9rzSPB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Request for Product Lists,pdf.exe

Files

Request for Product Lists,pdf.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 593KB - Virtual size: 593KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ