ShippingXDocuments[.]pdf[.]ace | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ShippingXDocuments.pdf.ace
Size

532KB
MD5

5dd2bbb8eaea1b412e62f489e61fae95
SHA1

0d638f807e5c472c918e0cf6f1fbef835547a1d5
SHA256

51e20a52217737928a91d317a443f100efd428ee57fa3c0b2f7805fbf3301c8c
SHA512

9c589dd80f85401672a91b2d659e8eeff3bf67e0a5112a98a41ba92dffb53493248da803a8a83ff475ebfe1c9dd668c35145793da8f5a46870855ca025c15b16
SSDEEP

12288:plRbSLqBsr0gaQDerDRdKFD9FS8/JiKktchFb:plpSeur0gUSV9FS8/wKkeX

Score

1^/10

Malware Config

Signatures

Files

ShippingXDocuments.pdf.ace
.ace
out.ace
.ace
Shipping Documents.pdf.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 624KB - Virtual size: 623KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ