a265e252614455e8eacfd57cbca9c4f8b186453319182fca63af168353ad7db2 | Triage

Sharing

General

Target

a265e252614455e8eacfd57cbca9c4f8b186453319182fca63af168353ad7db2
Size

667KB
MD5

9daa022e0874d317529461eefc6faa3c
SHA1

965f162bd7958ad345afba571939a3446e69a8d7
SHA256

a265e252614455e8eacfd57cbca9c4f8b186453319182fca63af168353ad7db2
SHA512

1465b9a4bda06bf7bd305f7742f42b314bc9d38ed1c36a8c9b726a1dcb8a7b16e9b84c111cf091786da4e7bd36595cf09d2b79a148534d3f6a46ccb113365ea8
SSDEEP

12288:bRnffvIK3k/UnRXulEYk7ZayKHmrqRayct5lSiaggZYnzoAlZMqug5mrbOTZk:bpnJR9Bc1mrqRH0c2n+8mrbok

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/invoice.pif

Files

a265e252614455e8eacfd57cbca9c4f8b186453319182fca63af168353ad7db2
.zip
invoice.pif
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 789KB - Virtual size: 788KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ