VocN.pdb
Static task
static1
Behavioral task
behavioral1
Sample
PO and Proforma invoice.exe
Resource
win7-20240419-en
General
-
Target
PO and Proforma invoice.exe
-
Size
814KB
-
MD5
b289f51e58a368997298cc205b10d8be
-
SHA1
4e3256b8699de2d2a67aa122337bfaa7407a737b
-
SHA256
18f7507efdb35483a8642553f66647b9c1cc54d67614782622b7a64261042924
-
SHA512
54ceecb268ef81664b7ae4af7e399a72643a9415877c3b3ac9c14b8a363d72d07d1dff51e20dc60e6e4529c57b1e545434c93385d0d46ba74a3acf884df1b4f3
-
SSDEEP
12288:nlIc81H9rI6rgKmQgVsavXLJkM5ghECVFnMfkNbaz3e0igw0D9OwhEDin:nlUlRMK8JdX5aECdNba60igw0k0n
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource PO and Proforma invoice.exe
Files
-
PO and Proforma invoice.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 811KB - Virtual size: 811KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ