INVOICE PAYMENT_Scan0016PDF[.]scr[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

INVOICE PAYMENT_Scan0016PDF.scr.exe
Size

645KB
MD5

abbfeb716ac00b772af2d5a581f844c2
SHA1

c54f3b6f6efa01d41344ee04a354d2bb20fde59f
SHA256

4b9c6e661113712517e444529c549272bf57852a0d744dac9e77724a413e2e76
SHA512

9e4b32907a52a80dee362907a585ab06f5b65ffa263804667191d68edc51224e100c05545f2b26f8e359a78d24f7f98fa19c8cc27ec3275c8ea1ca7c79eaa142
SSDEEP

3072:oJrKxJ3hmACa84OJHCbDQvojQ89u6MivhQcUeaUnxbV/n2Jl5twjMoMysPLQVL0a:C+H3hqZGbPiivhQewtvhPLCIQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
INVOICE PAYMENT_Scan0016PDF.scr.exe

Files

INVOICE PAYMENT_Scan0016PDF.scr.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 317KB - Virtual size: 316KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 327KB - Virtual size: 326KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ