21112023_1355_20112023_Request for 500kg Fertilizer[.]pdf[.]arj

General

Target

21112023_1355_20112023_Request for 500kg Fertilizer.pdf.arj
Size

488KB
MD5

46b35c1c548901878db9420c8beff9b6
SHA1

a88bbf8af3ea73049a5fe8a7a3b4aa3efcd3e8a0
SHA256

97916efd2179d02a18871d70c38f0510248c59a62a19b1e81594318db7960585
SHA512

5a2c6c9e1f6c936cc05b538ffb444c7d330a1448114deb75fc3e0136144082aa3ea34bdf5f1eb2b4042f3cf6fcbd51ac5a42b66c7a256dd24e1ff2eb0ca9f4e9
SSDEEP

12288:Tkc7uNKDmsnnHnkcGpYD29YB42TzcSp7oe5NAgj+gkYLB8e:T6YEBpYD244eckjggIYLie

Score

3^/10

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Request for 500kg Fertilizer.pdf.exe

21112023_1355_20112023_Request for 500kg Fertilizer.pdf.arj
.rar

Password: infected
Request for 500kg Fertilizer.pdf.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 497KB - Virtual size: 496KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ