ORDER ENQUIRY[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ORDER ENQUIRY.exe
Size

743KB
MD5

0e9365d2d09e90105be80bf19ce6910d
SHA1

4591dc2b7c9d003329e14ca71038a43ec09db61f
SHA256

4ee9ecf9c52b7077900ff2c7f8967f137935be21601cc4b4fba700b11f420cb3
SHA512

f5f982d0af11ecee4e455198d1f9dc08f65f8cdfbeda588f1b10be9e26877a29d456877ea203a79b4983c08383f453df6842d92e757c38b3e1fccb3effaca0d9
SSDEEP

12288:Jo+J6Sv2iNhJz/IIHF3fKqH36glTOr3G81RBwp3r1cWl6M80az3JQMd0y0/IEg0N:JoxSv1HJz/IIHFv9HZ239SbB6M8rsQFa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ORDER ENQUIRY.exe

Files

ORDER ENQUIRY.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 741KB - Virtual size: 740KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ