PO20240604005[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

PO20240604005.exe
Size

734KB
MD5

b237ba996c4c924dacf8f2b4737dbd71
SHA1

303a6d487889fb468d171e096333b63111bf7d97
SHA256

a22ceae93aaa67517da2c5b452cb32136cd7395bfd3f292af6748fdf10c3c671
SHA512

1cf11b3ebf4ebd89ab3bb4fa6e011307b5f417f481c60272ec45f2b9bdf5238d3f55dedff25418c28732fa3c5c05a4ad22578f1c8abecf31a85b3e182723db8f
SSDEEP

12288:HE3qyJMVUxiDWGkR1dU9A+sPOvk1H2Ea2Ba8uiiV5fXGxrmoZROtV3Ka:k6Ofxdw4POvkJ2Eaz8uihxrm44tNKa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
PO20240604005.exe

Files

PO20240604005.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 722KB - Virtual size: 720KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ