New-order2435446536353536[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

New-order2435446536353536.exe
Size

662KB
MD5

7614caa7d2ec9a344652edbcbefa0777
SHA1

52221ac0e9dc4ac16951e0fa8ed0842d7117b05b
SHA256

eddb794f8358bab26a18d56e4485258bb4416b3c09c80bad0cb566fce4ea639f
SHA512

8346f90cb9cbb241c4e8ead789e0d4a2e1ab39ba6382406f32b87355c3ce1a149c274646cb9e68770cc064f694a0e76be8bc1b0da22cb29848ff1a70bc74aa79
SSDEEP

12288:/Dr9dob1LPHaWL8JJ1NnAeQGOtuJdI1sMM1FC:/DZUuWEjOU81sb1FC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
New-order2435446536353536.exe

Files

New-order2435446536353536.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 659KB - Virtual size: 659KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ