Request For Quotations,pdf[.]exe | Triage

Sharing

General

Target

Request For Quotations,pdf.exe
Size

613KB
MD5

9f57659da331a48e2ccb12cd5cd57b31
SHA1

a8a2f4a0cbccfcbcef1fbe7ea023f310faa71e8f
SHA256

9647b7c938ab55c259bf0a36b0e651e232e0bf05acc7f24dfa6fdf3f08007004
SHA512

8a537592ca81c9922f8f6e511c8495a59f2e462ad73444198770db4c4adc5093efc8632a59518da014ebf2e36b021377094b31ca58e92455359bb74d5531e0ca
SSDEEP

12288:HcNCxCzqpnzSLpaLRFP8jypJrd47uuqkRmL4lLZv:HHXRzSL0FB8jMJh4CB+LZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Request For Quotations,pdf.exe

Files

Request For Quotations,pdf.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 611KB - Virtual size: 610KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ