shipping doc[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

shipping doc.exe
Size

972KB
MD5

695af3415054de3d4cce499c358e1f42
SHA1

22ed90510c0edb0e0b7726a4f9a535bfec7b96b2
SHA256

478dba764af2f0d8179f62518b9d675cec897722b4bc9dc75b5bf66cbca0b9a0
SHA512

1ed56c3ec05b29f2104a5fe8e6d93580985b4bac048077826c767768fcc5c8ff9dc05106deeed75c28fffadf1559086a6a4329a077086164e56ee0948f99e2d8
SSDEEP

24576:5DiCMDvER/nFnVZE6M5L/r3vfInuLCJwiUhJ8:5DUI/FnV66Mxr3pCJwiUhJ8

Score

1^/10

Malware Config

Signatures

Files

shipping doc.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 960KB - Virtual size: 960KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ