Auftragsbestätigung 20241107_pdf[.]com[.]exe | Triage

Sharing

General

Target

Auftragsbestätigung 20241107_pdf.com.exe
Size

3.7MB
MD5

5d350ff6f79df58f29f77fc7b74d892e
SHA1

4cdb861ef0884b613071d7351b3564402722811f
SHA256

bbea0c056d01b506a9a6d37b6aca9147466e65a962f4b140887334e6f4a23b6c
SHA512

758ff980aaf24e66cc45d410c967d3f37aad9a46db9d79b815f222fd8999786637a5df7d7cb74f194b79a0216b35a3a77e8c2c2c8443194b27eef132b07664ff
SSDEEP

98304:YfpDVLWR3t89g0luja0VOsfBR42dNVePoEJimT7fci+DMQzlxkPYm:qpDVaRiabbPBJdDePoEQmPfciIMF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
Auftragsbestätigung 20241107_pdf.com.exe

Files

Auftragsbestätigung 20241107_pdf.com.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

ZQCciOWOPBrP.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 3.7MB - Virtual size: 3.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ