20092024005019092024ORDER110519243537[.]pdf[.]uue | Triage

Sharing

General

Target

20092024005019092024ORDER110519243537.pdf.uue
Size

532KB
MD5

cea2fa5baaf8aca4eb0e0b4a9988f8f4
SHA1

805822828a53db13569611f5b94852579e18faac
SHA256

1e8b6e81e55f9ba76b855e32bf3428329c3dc2e0ec48bf2a85e523bf07a7f284
SHA512

c6460357cd1256a4e6e55b9ff855d0b8c4b77ed441a1282b3da4e0416bee1c00dab35fed5e0b8ad52bb37b567d618403e07e46c05a1f3d3d978ee2d8e9e0d84a
SSDEEP

12288:Oc/QrbJL2ExZmvsqhknSc1htpksdZVnxLoScHj113iWt:xQfEFvMbXdnn6ScHjP3iWt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/ORDER_1105-19-243537.pdf.exe

Files

20092024005019092024ORDER110519243537.pdf.uue
.rar
ORDER_1105-19-243537.pdf.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

gUrq.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 569KB - Virtual size: 568KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ