Shipping Documents PDF[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Shipping Documents PDF.exe
Size

926KB
MD5

4788db864dbc6fc210575f437f37bf02
SHA1

177132e62ecf79da98e5e320aa04e156f6acffd6
SHA256

8aad378acd6bb2912809751007cc762facf7eefcc867b5fd8ace1e1728329c08
SHA512

58cf9cc57bd30ab671bb219b2c94ef62bbce136e8602930d892faa554fb45414e3af395d397387d8c0c9086bb48ed3e4cdaef78ff7e91cc029e70cd03722d376
SSDEEP

24576:vqt2jWnm5bZVLablxrbz2mAkW0MhioaeCq:vs2jSm5bPOrn2VwkH

Score

1^/10

Malware Config

Signatures

Files

Shipping Documents PDF.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 918KB - Virtual size: 918KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ