982f939b9103cee54a1cbfad0a458bace7b6d6d266f976c6b4d72336f57bc702 | Triage

Sharing

General

Target

982f939b9103cee54a1cbfad0a458bace7b6d6d266f976c6b4d72336f57bc702
Size

535KB
MD5

15def7bf17282c8df2a38f532a312470
SHA1

f3b3a4b5bc07b1f671bbd67c6a6560718c68a453
SHA256

982f939b9103cee54a1cbfad0a458bace7b6d6d266f976c6b4d72336f57bc702
SHA512

67b3e8df979e3b4a8dbc7363976da541fcd229d3dbeb15b4fac7e93de18660a32a9b9ba3327f1ed3b6be04d75c5bdfd31874ec740e8362b07543462c289b7408
SSDEEP

12288:u6iXwHyBWuBAqGoIec4RZcJVFpMcS9SN/3tlmtWI1m3:uNwSBWuBAiZcRpMpu3Ou3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Purchase Order.exe

Files

982f939b9103cee54a1cbfad0a458bace7b6d6d266f976c6b4d72336f57bc702
.zip
Purchase Order.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 615KB - Virtual size: 614KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ