PR240614_ORDER[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

PR240614_ORDER.exe
Size

215KB
MD5

0b40ca11733a660ffef6bcd024f7dc60
SHA1

10e2533883d0ed8eff6ad7dc7aa0874ab855f4cc
SHA256

02834189b25bc0ac8a5c71ecf6ec7fdc15c85f12f1b1e57213ba2cd41cfe68d4
SHA512

974bd2e5488cd327435471f36b17b7b70e79cb94746e2182255aa5ad79fa5cd3ad81c995e07221805272218e166bee04222002175f32a7f6cf0c4d3292c16e4c
SSDEEP

6144:VbzfLHI6cyVqOt1yjhfMupTjfYNkRG4T/yAe1UW7:VbnHI6cyVR1yjhkup3ekAM+37

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
PR240614_ORDER.exe

Files

PR240614_ORDER.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

/home/pxnst/users/4/Stub/obj/Release/C0d3W15d0m.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 79KB - Virtual size: 78KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 135KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ