INVOICE_FEB-888201-2024[.]r15 | Triage

Sharing

General

Target

INVOICE_FEB-888201-2024.r15
Size

602KB
MD5

e2c08fc796a2aca57ff8488a315498e2
SHA1

2f41c1884e3df784f9fd4a849e1f2d768c630953
SHA256

0fd9bc0d9693f9e140b0b0381ea4f6601e57ea45fc9b4e0bc92fda6dd92eac9e
SHA512

c934240c86f8d71569d631a65c8f8a2919ec9cfc83276d6de4ad2cbb4c90c24ed6f270fefbfcd39499fdc0f8e44482f585db0cdd4005d5a14a880f7bb87d470a
SSDEEP

12288:gNNUR7ZKPFwivtNJjCfTj8ecl2ACdfQ9RQZhiFDEiGGbaVRq+buBCKih:O07UP2SJjCv8ec0AO47QYD1baVR+xE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/INVOICE_FEB-888201-2024.exe

Files

INVOICE_FEB-888201-2024.r15
.rar
INVOICE_FEB-888201-2024.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

bgzg.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 627KB - Virtual size: 627KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ