PROFORMA INVOICE-987678[.]pif[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

PROFORMA INVOICE-987678.pif.exe
Size

798KB
MD5

33b2cc2ce40499e2e07c398044ab4078
SHA1

a40df64de9d9900de5ed7c40561930d347dee562
SHA256

43c8f7c4fd456d2e3db0c15024481db6681b8ea7c8f296f99957c36630f76e37
SHA512

fefdb3d67184d9127e63db11419b2f7d31bd2d275b6243c3f971b426230a40c511d24a1e4709c13aa6927ff4b9075eeb5a0d25b65881e1c84ca785f9b48d3de2
SSDEEP

12288:ijLu6IOs9suoDSy61LSuNnZbZRIeopiaBL5n7ENA/YBQr8b:wLux9loey6UuApiaX77YW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
PROFORMA INVOICE-987678.pif.exe

Files

PROFORMA INVOICE-987678.pif.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 729KB - Virtual size: 728KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ