SALES CONTRACT (DRAFT)[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

SALES CONTRACT (DRAFT).exe
Size

635KB
MD5

1254f2d31bffea1b5a4b776713ff2022
SHA1

d48a326000b88b63885f5683533bde3383711728
SHA256

bf2bb447f3c3344ff70beede0d0889840d533b011f963136b9e3b1bf897f7991
SHA512

ce91e1903b28e8aefc1b1b54b20311c1b04ffd27ebeb9969faaf8c77ef0c3af649d9d4c0d4e54d978fca8eb7f9383cc1735a5e6aa35dae1f490cfefdc39ad73b
SSDEEP

12288:pyshSDiXMbwS7odshQ8hQPh42ZilYXP1elmwfcUQbYNRgiy0TnKT7Fud:mb7jhQ8hQaVkBjbXf7y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SALES CONTRACT (DRAFT).exe

Files

SALES CONTRACT (DRAFT).exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 632KB - Virtual size: 632KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ