PCMC Consignment PO[.]rar | Triage

Sharing

Copy URL Twitter E-mail

General

Target

PCMC Consignment PO.rar
Size

692KB
MD5

4556e9659a9515ee4bb180ea852eb8ff
SHA1

ad0f0e6f96a28c6b2058abe7e9e07e4a00590b99
SHA256

32c8ff272c004b5b5b01caf182d858c4ac3ac7c5a5321ca249f4387d697914b5
SHA512

212012ea22643377ef00220cae952d1e30e30378f7f951bd8155969f3c2abb8cdf7596abc4222949e00ab0ddc1b77eaa5f7e4e440a1c1c1ce64f1693af7232b3
SSDEEP

12288:Zaf6Fz73wD+zWYznvEB9WOhqWQH1aiGJ787Go7TJ3MhFDG70YlP5wQBkKqyVZVYL:tgMz69WOU57B79cqwYlP5wMkQpc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/P.I.exe

Files

PCMC Consignment PO.rar
.rar
P.I.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 770KB - Virtual size: 769KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ