fb46c7748fa22637eb41dece014af66ecebd6ea94ae2375312c3d2600d1bf8ef | Triage

Sharing

General

Target

fb46c7748fa22637eb41dece014af66ecebd6ea94ae2375312c3d2600d1bf8ef
Size

1.2MB
MD5

55de00b8307367c09dee9b675e8a3dba
SHA1

d98deb8be9696983d2f440eebbc19b62d6d521d8
SHA256

fb46c7748fa22637eb41dece014af66ecebd6ea94ae2375312c3d2600d1bf8ef
SHA512

87e205d266e0dbeb19e617af9431cb4a8989d854370c4b69e0f471acfd35547ed1b6ca7d8af81659242372e60e8aebc259ed0e7b3cae05cf03d0c2246ec64029
SSDEEP

12288:USmPwRYnOELz89ppGJ/PKEP69P4fTwp2Ns8hGX8/bO/yJ8cPXN3Dc3es:USmP0Y74jA/G2NvGX8l9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack002/PURCHASED ORDER -28723-24.bat

Files

fb46c7748fa22637eb41dece014af66ecebd6ea94ae2375312c3d2600d1bf8ef
.iso
out.iso
.iso
PURCHASED ORDER -28723-24.bat
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 685KB - Virtual size: 685KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ