Static task
static1
Behavioral task
behavioral1
Sample
shipping docs.exe
Resource
win7-20220414-en
General
-
Target
shipping docs.exe
-
Size
625KB
-
MD5
0f72bcc0a965ce4826e4948885261887
-
SHA1
64617230ee1b2fdfaeff5eecae0eef05b4382ffc
-
SHA256
ee86c7ff7a97b1a9a3ea3e7c56ba8e49f3f8e161e90c46cb3523fc91e7f20bef
-
SHA512
70465ab981b3b2954c4760415af1c03348ed112fbaad128d8f6ef09a55f18603a55e1adc42c09002ab072128d1b9c0532d0e3b1041f161879d1f9111a70c54b7
-
SSDEEP
12288:jiGXICpk/Zi2qSmTDgi5aWOXDWUBpmNL7wyWR1VI60tgqr:uUICyqSmTv5ainNQyW
Malware Config
Signatures
Files
-
shipping docs.exe.exe windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 623KB - Virtual size: 622KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ