SHIPPING DOCUMENT[.]exe[.]bin | Triage

Sharing

Copy URL Twitter E-mail

General

Target

SHIPPING DOCUMENT.exe.bin
Size

709KB
MD5

6a426ea5dab9abb4a0442733925a8780
SHA1

44aaa13d2b79175eed44980e1d1af1020d172d7e
SHA256

38dfb1c6f7d5358a588842c27556d3b3eb3baa4a6e84286bc84ad10bf238f832
SHA512

dc646383e7d4381e04ccd8128eae1b848e728e74bfc84e5c1d49ac58457dc0183ae96c16452560cc3cd6ce1dfda8fab46c9616fc56015e2c72637634c9af10a1
SSDEEP

12288:vL5oIsjxIlVlcfT1Luc0Zod8d3fYgktjUqzRWiuh1p3p:rKmlVlcf5qcFd8d3tkV8b

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SHIPPING DOCUMENT.exe.bin

Files

SHIPPING DOCUMENT.exe.bin
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 705KB - Virtual size: 704KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ