Shipping document[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Shipping document.zip
Size

431KB
MD5

d1268d5a1ee1ee65ac69fe44f56974ec
SHA1

d8d5619a2f68fae433d6d1c1e9dcc4d83c733b4c
SHA256

0debe6b083294c2308e8262670203e2c729d71cd2eb5a3927ded4827a2f2ae22
SHA512

ba245881624ceffbb8e0f8b1ddfc3fe3b3b4f8dfb8ae3c5e244bc34aff4124cb32ad364f959fb24920f736943b9081d34f5df487c9b1042343e2b237be585fc6
SSDEEP

12288:ESuCxpZrvovxOTMybLeHTu10wBz5szar5:ESuQTQ9o2fa5sg5

Score

1^/10

Malware Config

Signatures

Files

Shipping document.zip
.zip
Shipping document.exe
.exe windows x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 455KB - Virtual size: 455KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ