FedEx Shipping Documents[.]exe | Triage

Sharing

General

Target

FedEx Shipping Documents.exe
Size

617KB
MD5

1c57a9e41ca9b9e64fb33470facd087e
SHA1

1929dc10880f028c83ffaef8693b54fe383f0fb0
SHA256

00cf6e9a873007d1f11859d3e30c85bda6f137cfbc53cd0bc9a4ac77a6ad5b04
SHA512

bc0fd39be1fe839be06618e5bda37bbea55556768279d6d918209a104b932024d63a38dcfdedcd23fa80f4e609ef494f7d2dca18b1262fa1d38f7746218c4520
SSDEEP

12288:taWIm6lVvtzZBEP85VdbHPWF07ViMLRZOYKWnId5a/VAV9Cai2b:MTmIt9BEP8TdtUMLRZnKWnIdSQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
FedEx Shipping Documents.exe

Files

FedEx Shipping Documents.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 606KB - Virtual size: 606KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ