70afbc681ab86632cedaf859285a45e94ca7c3c31f5fcf357d6f2fdb691990c1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

70afbc681ab86632cedaf859285a45e94ca7c3c31f5fcf357d6f2fdb691990c1
Size

669KB
MD5

bbe9f91403b771354476d5f6afc02113
SHA1

7f05e52718cb7a65cfc30376a33a2d60a07bf6e6
SHA256

70afbc681ab86632cedaf859285a45e94ca7c3c31f5fcf357d6f2fdb691990c1
SHA512

c2ff67d063294d7a1cb8432978ec1b29cf98991312c85ef529190670f6e2b95a4bf6346c5d9ee00ab758c9715c2e74f81edf7c9a6a8c84ce54a10193efd8d564
SSDEEP

12288:foMEVJ5L+fopoXNWjinJcr23r3afiVClAGUpgz70ly90e:f1MI3drD3rqAsAOz7ky90e

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/New Order Request.exe

Files

70afbc681ab86632cedaf859285a45e94ca7c3c31f5fcf357d6f2fdb691990c1
.zip
New Order Request.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

wCSt.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 704KB - Virtual size: 700KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 208KB - Virtual size: 204KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ