Pl 749020984940-PDF[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Pl 749020984940-PDF.exe
Size

686KB
MD5

cf28ccf54f1bd2a9c8d57caff3e744d5
SHA1

9ee7f878e52b62a90eb393c81113f93174e78132
SHA256

d6ac0eeecda07bab17a4dde0ed70aae89398fd8a85c5cfc419b3e548711f43d0
SHA512

7767f25a7a63fe1ebc9c43631dcb8c7f94f66d9f83ecd3a2deb2e8900fcc51ebd8d68b98e821418afd780a02a56b467a32063edbf500aba834b4f885c2fe223d
SSDEEP

12288:U3/T3/fVrTtK3/H8wWjCZacKPM6QgyvcTEkAfGu/lkF5NvFKkEHIO4fjg83/L3/:UrXVrTtKQCZacZ5IEkhutkF5NvVz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Pl 749020984940-PDF.exe

Files

Pl 749020984940-PDF.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 670KB - Virtual size: 668KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ